Description

SQL injection vulnerability in index.php in the MGFi XfaQ (com_xfaq) 1.2 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an answer action.

Remediation

References

CVE-2008-0795

Related Vulnerabilities

Magento Improper Input Validation Vulnerability (CVE-2022-24086)

WebLogic CVE-2022-21292 Vulnerability (CVE-2022-21292)

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3727)

OpenSSL Cryptographic Issues Vulnerability (CVE-2013-6449)

WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Request Forgery (5.1.0)

Severity

High

Classification

CVE-2008-0795 CWE-138

Tags

Missing Update Known Vulnerabilities