Description

SQL injection vulnerability in administrator/popups/pollwindow.php in Joomla! 1.0.12 allows remote attackers to execute arbitrary SQL commands via the pollid parameter.

Remediation

References

CVE-2007-4184

Related Vulnerabilities

WordPress Plugin FoxyPress 'uploadify.php' Arbitrary File Upload (0.4.2.1)

WordPress Plugin Church Admin 'id' Parameter Cross-Site Scripting (0.33.4.5)

MySQL CVE-2016-5444 Vulnerability (CVE-2016-5444)

WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.3)

WordPress Plugin Child Theme Creator by Orbisius Arbitrary File Modification (1.2.6)

Severity

High

Classification

CVE-2007-4184

Tags

Missing Update Known Vulnerabilities