CVE-2009-1263

2009-04-0723:00:00

mitre

www.cve.org

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.6%

JSON

SQL injection vulnerability in sub_commententry.php in the BookJoomlas (com_bookjoomlas) component 0.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the gbid parameter in a comment action to index.php.

References

osvdb.org/53421

www.securityfocus.com/bid/34392

www.vupen.com/english/advisories/2009/0952

exchange.xforce.ibmcloud.com/vulnerabilities/49682

www.exploit-db.com/exploits/8353