CVE-2009-4200

Joomla! Seminar <1.28 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in the Seminar (com_seminar) component 1.28 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a View_seminar action to index.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ThE g0bL!N · perlwebappsphp

https://www.exploit-db.com/exploits/8867

View Code ZIP pw:eip

References (2)

[Exploit] http://www.securityfocus.com/bid/35192

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/8867

Scores

EPSS 0.0026

EPSS Percentile 49.9%

Details

CWE

CWE-89

Status published

Products (1)

vollmar/com_seminar 1.28

Published Dec 04, 2009

Tracked Since Feb 18, 2026