CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-1848

SQL injection vulnerability in the JoomlaMe AgoraGroups (aka AG or com_agoragroup) component 0.3.5.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a groupdetail action to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/35118
https://www.exploit-db.com/exploits/8814
http://www.securityfocus.com/bid/35118
https://www.exploit-db.com/exploits/8814

Products affected by CVE-2009-1848

Joomla » Joomla » Version: Any

cpe:2.3:a:joomla:joomla:*
Joomlame » Com Agoragroup » Version: 0.3.5.3

cpe:2.3:a:joomlame:com_agoragroup:0.3.5.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-1848

Products

Pricing

Contact Us