Description

SQL injection vulnerability in (1) Joomla! 1.0.11 and 1.5 Beta, and (2) Mambo 4.6.1, allows remote attackers to execute arbitrary SQL commands via the id parameter when cancelling content editing.

Remediation

References

CVE-2007-0374

Related Vulnerabilities

Moodle Improper Control of Generation of Code (Code Injection) (CVE-2019-14827)

WebLogic CVE-2020-14859 Vulnerability (CVE-2020-14859)

LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2571)

Joomla Other Vulnerability (CVE-2006-0303)

WordPress Plugin WordPress Social Stream Security Bypass (1.5.15)

Severity

High

Classification

CVE-2007-0374

Tags

Missing Update Known Vulnerabilities