Description
SQL injection vulnerability in the Joomlub (com_joomlub) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an auction edit action to index.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by 599eme Man · textwebappsphp
https://www.exploit-db.com/exploits/9593
References (4)
Core 4
Core References
Exploit x_refsource_misc
http://packetstormsecurity.org/0909-exploits/joomlajoomlub-sql.txt
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36287
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/9593
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36607
Scores
EPSS
0.0034
EPSS Percentile
56.6%
Details
CWE
CWE-89
Status
published
Products (1)
joomlub/com_joomlub
Published
Dec 30, 2009
Tracked Since
Feb 18, 2026