SQL injection vulnerability in Phil Taylor Comments (com_comments, aka Review Script) 0.5.8.5g and earlier component for Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2008-02-14 00:00
Updated : 2024-02-28 11:01
NVD link : CVE-2008-0773
Mitre link : CVE-2008-0773
CVE.ORG link : CVE-2008-0773
JSON object : View
Products Affected
phil_taylor
- review_script
- comments
mambo
- com_comments
joomla
- com_comments
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')