Sql injection

2011-11-2301:55:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.4%

JSON

SQL injection vulnerability in the GBU Facebook (com_gbufacebook) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the face_id parameter in a show_face action to index.php.

CPENameOperatorVersion
com_gbufacebookeq1.0.5

CPE	Name	Operator	Version
	com_gbufacebook	eq	1.0.5

References

packetstormsecurity.org/1004-exploits/joomlagbufacebook-sql.txt

secunia.com/advisories/39487

www.securityfocus.com/bid/39576

www.vupen.com/english/advisories/2010/0944

exchange.xforce.ibmcloud.com/vulnerabilities/57946

www.exploit-db.com/exploits/12299