CVE-2007-0374: SQL Injection
First published: Fri Jan 19 2007(Updated: )
SQL injection vulnerability in (1) Joomla! 1.0.11 and 1.5 Beta, and (2) Mambo 4.6.1, allows remote attackers to execute arbitrary SQL commands via the id parameter when cancelling content editing.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mambo Mambo | =4.6.1 | |
| Joomla Joomla | =1.5.0_beta | |
| Joomla Joomla | =1.0.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/author
- agent/severity
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/mambo
- canonical/mambo mambo
- version/mambo mambo/4.6.1
- vendor/joomla
- canonical/joomla joomla
- version/joomla joomla/1.5.0_beta
- version/joomla joomla/1.0.11