Sql injection

2012-09-2600:55:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.4%

JSON

SQL injection vulnerability in Joomla! 1.7.x and 2.5.x before 2.5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CPENameOperatorVersion
joomla\\!eq1.7.1
joomla\\!eq1.7.4
joomla\\!eq2.5.1
joomla\\!eq1.7.0
joomla\\!eq1.7.5
joomla\\!eq1.7.3
joomla\\!eq2.5.0
joomla\\!eq1.7.2

Name	Operator	Version
joomla\\!	eq	1.7.1
joomla\\!	eq	1.7.4
joomla\\!	eq	2.5.1
joomla\\!	eq	1.7.0
joomla\\!	eq	1.7.5
joomla\\!	eq	1.7.3
joomla\\!	eq	2.5.0
joomla\\!	eq	1.7.2

References

developer.joomla.org/security/news/391-20120301-core-sql-injection.html

secunia.com/advisories/48005

www.openwall.com/lists/oss-security/2012/03/06/12

www.openwall.com/lists/oss-security/2012/03/06/5

www.osvdb.org/79837

www.securityfocus.com/bid/52312

exchange.xforce.ibmcloud.com/vulnerabilities/73699