SQL Injection Vulnerability in PccookBook Component for Joomla!
CVE-2008-0844

Currently unrated

Key Information:

Vendor: Joomla
Status: Com Pccookbook
Vendor: CVE Published:; 20 February 2008

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2008-0844?

The PccookBook component for Joomla! is susceptible to an SQL injection vulnerability through the user_id parameter in index.php. This flaw enables remote attackers to execute arbitrary SQL statements, potentially compromising sensitive data and application integrity. Proper validation and sanitation of input are crucial to mitigating such vulnerabilities.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2008-0844 - Proof of Concept

References

https://www.exploit-db.com/exploits/5145

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/bid/27864

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/40620

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Feb 20, 2008
👾
Exploit known to exist
Feb 20, 2008
Vulnerability published
Feb 20, 2008
Vulnerability Reserved
Feb 20, 2008

CVE-2008-0844 Data

JSON