CVE-2009-3835
The CVE-2009-3835 entry describes an SQL injection in the Joomla! JShop extension (com_jshop) via the pid parameter in a product action to index.php. Affects Joomla! JShop components; root cause is improper handling of user-supplied pid leading to arbitrary SQL execution. Exploitation details are...