Description

SQL injection vulnerability in the Ice Gallery (com_ice) component 0.5 beta 2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.

Remediation

References

CVE-2008-6852

Related Vulnerabilities

ReviveAdserver Session Fixation Vulnerability (CVE-2016-9125)

WordPress Plugin Popup Builder-Create highly converting, mobile friendly marketing popups Server-Side Request Forgery (4.2.5)

WordPress Plugin Stripe Payment for WooCommerce Security Bypass (3.7.7)

WordPress Plugin WP-Polls SQL Injection (2.71)

WordPress Plugin WP-PostRatings Cross-Site Scripting (1.50)

Severity

High

Classification

CVE-2008-6852 CWE-138

Tags

Missing Update Known Vulnerabilities