2 matches found
CVE-2010-0795
CVE-2010-0795 affects Joomla! JE Event Calendars (com_jeeventcalendar) component 1.0. The vulnerability is an SQL injection via the event_id parameter in an event action to index.php, allowing remote attackers to execute arbitrary SQL commands. Public exploit reference exists (Exploit-DB ID 11292...
CVE-2010-0796
The CVE-2010-0796 entry is a concrete SQL injection vulnerability in the Joomla! JE Quiz component (com_jequizmanagement) version 1.b01. The issue is triggered via the eid parameter in a question action to index.php, allowing remote attackers to execute arbitrary SQL commands. Affected software i...