CVE-2009-4550
Kunena Forum <1.5.4 - SQL Injection
Title source: llmDescription
SQL injection vulnerability in the Kunena Forum (com_kunena) component 1.5.3 and 1.5.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the func parameter to index.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ilker Kandemir · phpwebappsphp
https://www.exploit-db.com/exploits/9408
Scores
EPSS
0.0032
EPSS Percentile
55.4%
Details
CWE
CWE-89
Status
published
Products (2)
kunena/kunena_forum
1.5.3
kunena/kunena_forum
1.5.4
Published
Jan 04, 2010
Tracked Since
Feb 18, 2026