SQL Injection Vulnerability in Prince Clan Chess Club for Joomla!
CVE-2009-0379
Currently unrated
Summary
The Prince Clan Chess Club component for Joomla! contains an SQL injection vulnerability that allows remote attackers to inject and execute arbitrary SQL commands. This occurs through the 'game_id' parameter in the 'showgame' action of the index.php script. Attackers can exploit this flaw to manipulate the database, potentially leading to unauthorized data access or modification.
References
Timeline
Vulnerability published
Vulnerability Reserved