2 matches found
CVE-2008-0761
CVE-2008-0761 affects the Prince Clan Chess Club (com_pcchess) Joomla! extension (0.8 and earlier). The vulnerability is an SQL injection in index.php, exploitable via the user_id parameter in a players action, allowing remote attackers to execute arbitrary SQL commands. Documents consistently re...
CVE-2009-0379
CVE-2009-0379 describes an SQL injection in the Joomla! component com_pcchess (Prince Clan Chess Club) via the game_id parameter in the showgame action to index.php. This is a remote, unauthenticated injection vulnerability with potential for arbitrary SQL execution. The vector is distinct from C...