CVE-2009-3972
CVE-2009-3972 describes an SQL injection in the Q-Proje Siirler Bileseni (com_siirler) component for Joomla! version 1.2 RC, allowing remote attackers to inject arbitrary SQL via the sid parameter in the sdetay action of index.php. Affected software: com_siirler 1.2 RC on Joomla!. Root cause: imp...