Description

SQL injection vulnerability in the Ice Gallery (com_ice) component 0.5 beta 2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.

Remediation

References

CVE-2008-6852

Related Vulnerabilities

WordPress Plugin Entries For WPForms SQL Injection (1.4.0)

WordPress Plugin File Manager Multiple Cross-Site Request Forgery Vulnerabilities (5.0)

WordPress Plugin Automated Registration of the Course Multiple Cross-Site Scripting Vulnerabilities (1.0)

WordPress Plugin Zoho SalesIQ Multiple Vulnerabilities (1.0.8)

WordPress Plugin Booking calendar, Appointment Booking System Multiple Vulnerabilities (2.1.7)

Severity

High

Classification

CVE-2008-6852 CWE-138

Tags

Missing Update Known Vulnerabilities