CVE-2009-0377

Currently unrated

Key Information:

Vendor
Joomla
Status
Com Beamospetition
Vendor
CVE Published:
2 February 2009

Summary

SQL injection vulnerability in the beamospetition (com_beamospetition) 1.0.12 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the mpid parameter in a sign action to index.php, a different vector than CVE-2008-3132.

References

http://www.securityfocus.com/archive/1/500250/100/0/threaded
mailing-listx_refsource_BUGTRAQ
https://www.exploit-db.com/exploits/7847
exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/33391
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.