Description

Multiple SQL injection vulnerabilities in the Admin functionality in Joomla! 1.0.7 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via unknown attack vectors.

Remediation

References

CVE-2006-1049

Related Vulnerabilities

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-46148)

WordPress Plugin Easy Forms for Mailchimp Cross-Site Scripting (5.0.6)

WordPress Plugin Archive Posts Sort Customize Cross-Site Scripting (1.5)

WordPress Plugin Gallery-Flagallery Photo Portfolio SQL Injection and Information Disclosure Vulnerabilities (0.59)

PHP Use of Insufficiently Random Values Vulnerability (CVE-2023-3247)

Severity

High

Classification

CVE-2006-1049 CWE-138

Tags

Missing Update Known Vulnerabilities