2 matches found
CVE-2010-2147
The CVE-2010-2147 entry describes a Cross-site Scripting (XSS) vulnerability in the Joomla! My Car component (com_mycar) version 1.0. The flaw allows remote attackers to inject arbitrary web script or HTML through the modveh parameter in index.php. Connected sources confirm the affected product/c...
CVE-2010-2148
CVE-2010-2148 affects the Joomla! My Car (com_mycar) component version 1.0, where an SQL injection via the pagina parameter to index.php allows remote attackers to execute arbitrary SQL commands. This is the stated impact: partial confidentiality, integrity, and availability concerns. The connect...