CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2789

SQL injection vulnerability in the Permis (com_groups) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a list action to index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/35849
https://exchange.xforce.ibmcloud.com/vulnerabilities/52142
http://www.securityfocus.com/bid/35849
https://exchange.xforce.ibmcloud.com/vulnerabilities/52142

Products affected by CVE-2009-2789

Joomla » Joomla » Version: Any

cpe:2.3:a:joomla:joomla:*
Permis » Com Groups » Version: Any

cpe:2.3:a:permis:com_groups:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2789

Products

Pricing

Contact Us