Description
SQL injection vulnerability in index.php in the com_profile component for Joomla! allows remote attackers to execute arbitrary SQL commands via the oid parameter.
Exploits (1)
References (2)
Core 2
Core References
Exploit mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=120335361520072&w=2
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/27851
Scores
EPSS
0.0001
EPSS Percentile
0.4%
Details
CWE
CWE-89
Status
published
Products (2)
joomla/com_profile
mambo/com_profile
Published
Feb 20, 2008
Tracked Since
Feb 18, 2026