Description

SQL injection vulnerability in the Ice Gallery (com_ice) component 0.5 beta 2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.

Remediation

References

CVE-2008-6852

Related Vulnerabilities

FrontAccounting Cross-site Request Forgery (CSRF) Vulnerability (CVE-2018-7176)

Liferay Portal Missing Authorization Vulnerability (CVE-2022-39975)

WordPress Plugin Smart Marketing SMS and Newsletters Forms Cross-Site Scripting (1.1.1)

WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-0585)

WordPress Improper Input Validation Vulnerability (CVE-2008-5695)

Severity

High

Classification

CVE-2008-6852 CWE-138

Tags

Missing Update Known Vulnerabilities