Description

SQL injection vulnerability in the Ice Gallery (com_ice) component 0.5 beta 2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.

Remediation

References

CVE-2008-6852

Related Vulnerabilities

Internet Information Services Improper Authentication Vulnerability (CVE-2009-1122)

Jetty Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-28163)

WordPress Plugin GiveWP-Donation and Fundraising Platform Multiple Vulnerabilities (2.25.1)

WordPress Plugin Easy Social Feed-Social Photos Gallery-Post Feed-Like Box Cross-Site Scripting (4.4.1)

WordPress Plugin Font Uploader 'font-upload.php' Arbitrary File Upload (1.2.4)

Severity

High

Classification

CVE-2008-6852 CWE-138

Tags

Missing Update Known Vulnerabilities