Description

SQL injection vulnerability in the Weblinks (com_weblinks) component in Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.

Remediation

References

CVE-2010-2679

Related Vulnerabilities

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8865)

WordPress Plugin GDPR Cookie Compliance Security Bypass (4.0.2)

MediaWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2017-8809)

PHP Out-of-bounds Write Vulnerability (CVE-2017-9226)

WordPress Plugin Multiple Roles Cross-Site Request Forgery (1.3.1)

Severity

High

Classification

CVE-2010-2679 CWE-138

Tags

Missing Update Known Vulnerabilities