CVE-2010-2847

InterJoomla ArtForms 2.1b7.2 RC2 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-2847. PoCs published by Salvatore Fresta.

AI-analyzed exploit summary This is a technical writeup detailing multiple vulnerabilities in ArtForms 2.1b7.2 RC2, including SQL injection, directory traversal, and reflected XSS. It provides sample exploit URLs but does not include functional exploit code.

Description

Multiple SQL injection vulnerabilities in the InterJoomla ArtForms (com_artforms) component 2.1b7.2 RC2 for Joomla! allow remote attackers to execute arbitrary SQL commands via the viewform parameter in a (1) ferforms or (2) tferforms action to index.php, and the (3) id parameter in a vferforms action to index.php.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Salvatore Fresta · textwebappsphp
https://www.exploit-db.com/exploits/14263

This is a technical writeup detailing multiple vulnerabilities in ArtForms 2.1b7.2 RC2, including SQL injection, directory traversal, and reflected XSS. It provides sample exploit URLs but does not include functional exploit code.

Classification
Writeup 95%
Attack Type
Sqli | Info Leak | Xss
Complexity
Trivial
Reliability
Reliable
Target: ArtForms 2.1b7.2 RC2 Joomla Component
No auth needed
Prerequisites: Joomla installation with vulnerable ArtForms component
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/41457
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/60160
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/512215/100/0/threaded
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/14263

Scores

EPSS 0.0199
EPSS Percentile 78.1%

Details

CWE
CWE-89
Status published
Products (1)
gonzalo_maser/com_artforms 2.1b7.2 rc2
Published Jul 25, 2010
Tracked Since Feb 18, 2026