2 matches found
Sql injection
SQL injection vulnerability in the NeoRecruit comneorecruit component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in an offerview action to index.php, a different vector than CVE-2007-4506...
CVE-2007-4506
CVE-2007-4506 affects the NeoRecruit (com_neorecruit) Joomla! component, specifically versions 1.4 and earlier. The vulnerability is an SQL injection in index.php via the id parameter in an offer_view action, enabling remote attackers to execute arbitrary SQL commands. The root cause is improper ...