CVE-2010-0946

2010-03-0815:00:00

mitre

www.cve.org

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

27.8%

JSON

SQL injection vulnerability in the Keep It Simple Stupid (KISS) Software Advertiser (com_ksadvertiser) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showcats action to index.php.

References

explo.it/exploits/11068

www.securityfocus.com/bid/37682

exchange.xforce.ibmcloud.com/vulnerabilities/55526