Joomla Component com_joomlaDate SQL Injection (CVE-2008-6068)

An SQL injection vulnerability has been reported in Web Design Hero Joomladate. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

CVE-2008-6068

CVE-2008-6068 concerns a SQL injection in the JoomlaDate (com_joomladate) component for Joomla!, version 1.2. The vulnerability allows remote attackers to execute arbitrary SQL commands through the user parameter in the viewProfile action of index.php, indicating improper input handling in the af...