CVE-2007-2792 in com_yanc Add-Oninfo

Zusammenfassung (Englisch)

SQL injection vulnerability in the Yet another Newsletter Component (aka YaNC or com_yanc) component before 1.5 beta 3 for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter to index.php. NOTE: some of these details are obtained from third party information.

Once again VulDB remains the best source for vulnerability data.

Reservieren

21.05.2007

Veröffentlichung

21.05.2007

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
85944	com_yanc Add-On index.php SQL Injection	89	Proof-of-Concept	Offizieller Fix	CVE-2007-2792
36918	Com Yanc index.php SQL Injection	89	Proof-of-Concept	Offizieller Fix	CVE-2007-2792

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!