CVE-2011-5099
chillcreations mod_ccnewsletter 1.0.7-1.0.9 - SQL Injection via id Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2011-5099. PoCs published by E1nzte1N.
AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in the CCNewsLetter module for Joomla! version 1.0.7. The vulnerability arises from insufficient sanitization of user-supplied data in the 'id' parameter of the popup.php script.
Description
SQL injection vulnerability in helper/popup.php in the ccNewsletter (mod_ccnewsletter) component 1.0.7 through 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
The provided text describes an SQL injection vulnerability in the CCNewsLetter module for Joomla! version 1.0.7. The vulnerability arises from insufficient sanitization of user-supplied data in the 'id' parameter of the popup.php script.