CVE Vulnerabilities

CVE-2007-0374

Published: Jan 19, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in (1) Joomla! 1.0.11 and 1.5 Beta, and (2) Mambo 4.6.1, allows remote attackers to execute arbitrary SQL commands via the id parameter when cancelling content editing.

Affected Software

Name Vendor Start Version End Version
Joomla Joomla 1.0.11 (including) 1.0.11 (including)
Joomla Joomla 1.5.0_beta (including) 1.5.0_beta (including)
Mambo Mambo 4.6.1 (including) 4.6.1 (including)

References