Joomla! 'com_crhotels' Component 'catid' Parameter Remote SQL Injection Vulnerability

2012-01-31T00:00:00
ID EDB-ID:36638
Type exploitdb
Reporter the_cyber_nuxbie
Modified 2012-01-31T00:00:00

Description

Joomla! 'com_crhotels' Component 'catid' Parameter Remote SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/51728/info

The 'com_crhotels' component for Joomla! is prone to a remote SQL injection vulnerability.

A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

http://www.example.com/index.php?option=com_crhotels&view=cate&catid=[SQL Injection]