Description

Multiple SQL injection vulnerabilities in the Admin functionality in Joomla! 1.0.7 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via unknown attack vectors.

Remediation

References

CVE-2006-1049

Related Vulnerabilities

Plone CMS Improper Input Validation Vulnerability (CVE-2015-7318)

DataTables Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36713)

WordPress Plugin Contact Form 7 Arbitrary File Upload (5.3.1)

Mailman Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-5950)

WordPress Plugin Import all XML, CSV & TXT into WordPress Server-Side Request Forgery (6.5.2)

Severity

High

Classification

CVE-2006-1049 CWE-138

Tags

Missing Update Known Vulnerabilities