CVE-2007-6663

SQL injection vulnerability in (1) Puarcade.php and (2) PUarcade.html.php in Pragmatic Utopia PU Arcade (com_puarcade) 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:pragmatic_utopia:pu_arcade:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:pragmatic_utopia:pu_arcade:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:pragmatic_utopia:pu_arcade:2.1.3:beta:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-01-04 11:46

Updated : 2024-02-28 11:01


NVD link : CVE-2007-6663

Mitre link : CVE-2007-6663

CVE.ORG link : CVE-2007-6663


JSON object : View

Products Affected

pragmatic_utopia

  • pu_arcade

joomla

  • joomla
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')