2 matches found
CVE-2009-1499
The CVE-2009-1499 entry describes an SQL injection in the Joomla! MailTo (com_mailto) component. The vulnerability allows remote attackers to execute arbitrary SQL commands via the article parameter in index.php, indicating a remote‑code capable injection affecting the application’s database quer...
CVE-2008-4103
The CVE-2008-4103 issue affects Joomla! 1.5 before 1.5.7, where the mailto (com_mailto) component sends e‑mails without validating the URL, enabling remote attackers to transmit spam. The root cause is lack of URL validation in this component, as described in the NVD entry. No further remediation...