Description

SQL injection vulnerability in (1) Joomla! 1.0.11 and 1.5 Beta, and (2) Mambo 4.6.1, allows remote attackers to execute arbitrary SQL commands via the id parameter when cancelling content editing.

Remediation

References

CVE-2007-0374

Related Vulnerabilities

WordPress Plugin Sell Downloads Arbitrary File Disclosure (1.0.1)

Chamilo Improper Input Validation Vulnerability (CVE-2021-31933)

WebLogic CVE-2016-5531 Vulnerability (CVE-2016-5531)

Apache Tomcat Improper Handling of Exceptional Conditions Vulnerability (CVE-2021-30639)

WordPress Plugin User Profile Picture Information Disclosure (2.4.0)

Severity

High

Classification

CVE-2007-0374

Tags

Missing Update Known Vulnerabilities