2 matches found
CVE-2010-1559
SQL injection vulnerability in the SermonSpeaker comsermonspeaker component before 3.2.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a speakerpopup action to index.php. NOTE: some of these details are obtained from third party information...
CVE-2010-1559
Affected product: Joomla! SermonSpeaker component (com_sermonspeaker). Vulnerable in versions before 3.2.1 due to an SQL injection flaw via the id parameter in the speakerpopup action to index.php. This could allow remote attackers to execute arbitrary SQL commands. Remediation: upgrade to 3.2.1 ...