CVE-2008-0829

SQL injection vulnerability in jooget.php in the Joomlapixel Jooget! (com_jooget) 2.6.8 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail task.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:joomla:joomla:*:*:*:*:*:*:*:*
cpe:2.3:a:joomlapixel:jooget:2.6.8:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:43

Type Values Removed Values Added
References () http://forum.joomlaitalia.com/index.php?topic=388.0 - () http://forum.joomlaitalia.com/index.php?topic=388.0 -
References () http://members.joomlapixel.eu/download/componenti/patch-jooget-2.6.8-sql-injection/details.html - () http://members.joomlapixel.eu/download/componenti/patch-jooget-2.6.8-sql-injection/details.html -
References () http://secunia.com/advisories/28998 - Patch, Vendor Advisory () http://secunia.com/advisories/28998 - Patch, Vendor Advisory
References () http://www.securityfocus.com/bid/27836 - Exploit () http://www.securityfocus.com/bid/27836 - Exploit
References () https://www.exploit-db.com/exploits/5132 - () https://www.exploit-db.com/exploits/5132 -

Information

Published : 2008-02-19 21:44

Updated : 2024-11-21 00:43


NVD link : CVE-2008-0829

Mitre link : CVE-2008-0829

CVE.ORG link : CVE-2008-0829


JSON object : View

Products Affected

joomlapixel

  • jooget

mambo

  • mambo

joomla

  • joomla
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')