2 matches found
CVE-2009-2290
SQL injection vulnerability in the Boy Scout Advancement combsadv component 0.3 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a 1 account or 2 event task to index.php...
CVE-2009-2290
The CVE-2009-2290 entry concerns a SQL injection in the Joomla! Boy Scout Advancement component (com_bsadv) version 0.3 and earlier. The vulnerability path is through the id parameter in index.php for two tasks (account and event), enabling remote attackers to inject arbitrary SQL. This is descri...