CVE-2009-4576

2010-01-0621:33:00

mitre

www.cve.org

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

45.1%

JSON

SQL injection vulnerability in the BeeHeard (com_beeheard) component 1.x for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a suggestions action to index.php.

References

packetstormsecurity.org/0912-exploits/joomlabeeheard-sql.txt

secunia.com/advisories/37872

www.exploit-db.com/exploits/10734

www.osvdb.org/61355

www.securityfocus.com/bid/37495

exchange.xforce.ibmcloud.com/vulnerabilities/55135