SQL Injection Vulnerability in PcCookBook Component for Joomla!
CVE-2009-0329

Currently unrated

Key Information:

Vendor: Joomla
Status: Com Pccookbook
Vendor: CVE Published:; 29 January 2009

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2009-0329?

The PcCookBook component for Joomla! is susceptible to an SQL injection vulnerability that enables remote attackers to execute arbitrary SQL commands. This can be done via the recipe_id parameter in a viewrecipe action to index.php. Unlike other known vulnerabilities, this issue provides a distinct attack vector that could compromise database integrity and potentially expose sensitive data.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2009-0329 - Proof of Concept

References

https://www.exploit-db.com/exploits/7824

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/bid/33346

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/48088

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 29, 2009
👾
Exploit known to exist
Jan 29, 2009
Vulnerability published
Jan 29, 2009
Vulnerability Reserved
Jan 29, 2009

CVE-2009-0329 Data

JSON