Description

Multiple SQL injection vulnerabilities in Joomla! before 1.0.10 allow remote attackers to execute arbitrary SQL commands via unspecified parameters involving the (1) "Remember Me" function, (2) "Related Items" module, and the (3) "Weblinks submission".

Remediation

References

CVE-2006-3481

Related Vulnerabilities

WordPress Plugin Portfolio Gallery-Photo Gallery Multiple Unspecified Vulnerabilities (2.0.72)

WordPress Plugin WP Comment Remix SQL Injection and HTML Injection Vulnerabilities (1.4.3)

WordPress Plugin Listing, Classified Ads & Business Directory-uListing SQL Injection (2.0.3)

WordPress Plugin Code Embed 'suffix' Parameter Cross-Site Scripting (2.0.1)

Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-17223)

Severity

High

Classification

CVE-2006-3481

Tags

Missing Update Known Vulnerabilities