2 matches found
Sql injection
SQL injection vulnerability in the plgSearchEventsearch::onSearch method in eventsearch.php in the JEvents Search plugin 1.5 through 1.5.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some of these details are obtained from third party...
CVE-2010-0635
The CVE-2010-0635 entry concerns Joomla! with the JEvents plugin (versions 1.5–1.5.3). The vulnerability is an SQL injection in the plgSearchEventsearch::onSearch function within eventsearch.php, allowing remote attackers to execute arbitrary SQL commands via unspecified vectors. Impact is descri...