Description
SQL injection vulnerability in the Jumi (com_jumi) component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Chip d3 bi0s · textwebappsphp
https://www.exploit-db.com/exploits/8968
References (4)
Core 4
Core References
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/8968
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/35384
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/55112
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35465
Scores
EPSS
0.0015
EPSS Percentile
35.4%
Details
CWE
CWE-89
Status
published
Products (1)
com_jumi/com_jumi
2.0.3
Published
Jun 17, 2009
Tracked Since
Feb 18, 2026