CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3332

SQL injection vulnerability in the JBudgetsMagic (com_jbudgetsmagic) component 0.3.2 through 0.4.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the bid parameter in a mybudget action to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.exploit-db.com/exploits/9723
http://www.securityfocus.com/bid/36461
http://www.exploit-db.com/exploits/9723
http://www.securityfocus.com/bid/36461

Products affected by CVE-2009-3332

Joomla » Joomla » Version: Any

cpe:2.3:a:joomla:joomla:*
Sopinet » Com Jbudgetsmagic » Version: 0.3.2

cpe:2.3:a:sopinet:com_jbudgetsmagic:0.3.2
Sopinet » Com Jbudgetsmagic » Version: 0.4.0

cpe:2.3:a:sopinet:com_jbudgetsmagic:0.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3332

Products

Pricing

Contact Us