CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-0799

SQL injection vulnerability in index.php in the Quiz (com_quiz) 0.81 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a user_tst_shw action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://secunia.com/advisories/28980
http://www.securityfocus.com/bid/27808
https://www.exploit-db.com/exploits/5119
http://secunia.com/advisories/28980
http://www.securityfocus.com/bid/27808
https://www.exploit-db.com/exploits/5119

Products affected by CVE-2008-0799

Joomla » Com Quiz » Version: Any

cpe:2.3:a:joomla:com_quiz:*
Mambo » Com Quiz » Version: Any

cpe:2.3:a:mambo:com_quiz:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0799

Products

Pricing

Contact Us