Description

SQL injection vulnerability in (1) Joomla! 1.0.11 and 1.5 Beta, and (2) Mambo 4.6.1, allows remote attackers to execute arbitrary SQL commands via the id parameter when cancelling content editing.

Remediation

References

CVE-2007-0374

Related Vulnerabilities

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5318)

WordPress Plugin External 'Video for Everybody' Cross-Site Scripting (2.0)

WordPress Plugin HUSKY-Products Filter Professional for WooCommerce Multiple Vulnerabilities (1.1.4.2)

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-2550)

Magento Session Fixation Vulnerability (CVE-2019-8116)

Severity

High

Classification

CVE-2007-0374

Tags

Missing Update Known Vulnerabilities