Description

SQL injection vulnerability in administrator/popups/pollwindow.php in Joomla! 1.0.12 allows remote attackers to execute arbitrary SQL commands via the pollid parameter.

Remediation

References

CVE-2007-4184

Related Vulnerabilities

WordPress Plugin Blog social sharing component Cross-Site Request Forgery (1.4.5)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0737)

PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-39417)

WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce Security Bypass (3.5.13)

WordPress 3.8.4 Multiple Vulnerabilities (3.8 - 3.8.4)

Severity

High

Classification

CVE-2007-4184

Tags

Missing Update Known Vulnerabilities