CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-0706

SQL injection vulnerability in the Simple Review (com_simple_review) component 1.3.5 for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the category parameter to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://packetstormsecurity.org/0901-exploits/joomlasimplereview-sql.txt
http://www.securityfocus.com/bid/33102
https://exchange.xforce.ibmcloud.com/vulnerabilities/47726
http://packetstormsecurity.org/0901-exploits/joomlasimplereview-sql.txt
http://www.securityfocus.com/bid/33102
https://exchange.xforce.ibmcloud.com/vulnerabilities/47726

Products affected by CVE-2009-0706

Joomla » Joomla » Version: Any

cpe:2.3:a:joomla:joomla:*
Mambo » Mambo » Version: Any

cpe:2.3:a:mambo:mambo:*
Simple-Review » Com Simple Review » Version: 1.3.5

cpe:2.3:a:simple-review:com_simple_review:1.3.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0706

Products

Pricing

Contact Us