2 matches found
CVE-2009-3834
The CVE-2009-3834 entry describes an SQL injection in the Photoblog (com_photoblog) Joomla! component (alpha 3/3a). The vulnerability allows remote attackers to execute arbitrary SQL commands via the category parameter in a blogs action to index.php, enabling partial data exposure and modificatio...
CVE-2010-0610
CVE-2010-0610 concerns Joomla! PhotoBlog (com_photoblog) SQL injection vulnerabilities. Concrete details across connected docs: the affected component exposes an SQL injection via the blog parameter in an images action to index.php, enabling remote attackers to execute arbitrary SQL commands. A s...