Sql injection

2008-02-1522:00:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

41.7%

JSON

SQL injection vulnerability in index.php in the Quiz (com_quiz) 0.81 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a user_tst_shw action.

CPENameOperatorVersion
com_quizle0.81
com_quizle0.81

CPE	Name	Operator	Version
	com_quiz	le	0.81
	com_quiz	le	0.81

References

secunia.com/advisories/28980

www.securityfocus.com/bid/27808

www.exploit-db.com/exploits/5119