Description
Multiple SQL injection vulnerabilities in the Admin functionality in Joomla! 1.0.7 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via unknown attack vectors.
References (4)
Core 4
Core References
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0818
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/19105
Various Sources x_refsource_confirm
http://www.joomla.org/content/view/938/78/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/23819
Scores
EPSS
0.0001
EPSS Percentile
2.7%
Details
CWE
CWE-89
Status
published
Products (8)
joomla/joomla
1.0.0
joomla/joomla
1.0.1
joomla/joomla
1.0.2
joomla/joomla
1.0.3
joomla/joomla
1.0.4
joomla/joomla
1.0.5
joomla/joomla
1.0.6
joomla/joomla
< 1.0.7
Published
Mar 07, 2006
Tracked Since
Feb 18, 2026