SQL Injection Vulnerability in Joomla BSQ Sitestats by Joomla
CVE-2006-7126

Currently unrated

Key Information:

Vendor: Joomla
Status: Bsq Sitestats
Vendor: CVE Published:; 6 March 2007

Summary

The SQL injection vulnerability in Joomla BSQ Sitestats allows attackers to execute arbitrary SQL commands by manipulating the query string, which might exploit PHP_SELF to bypass security measures. This can lead to unauthorized access and data exposure, potentially compromising the entire Joomla installation and its database.

References

http://www.vupen.com/english/advisories/2006/4090

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/20614

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/449125/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Mar 6, 2007
Vulnerability Reserved
Mar 5, 2007