CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Letterman: >> Letterman >> 1.2.3 Security Vulnerabilities

CVE-2007-0382

Multiple SQL injection vulnerabilities in letterman.class.php in the Letterman 1.2.3 (com_letterman) component for Joomla! before 1.0.12 allow remote attackers to execute arbitrary SQL commands via the id parameter, related to the (1) lm_sendMail, (2) saveNewsletter, and (3) cancelNewsletter functions.

CVSS Score

7.5

EPSS Score

0.005

Published

2007-01-19

Page 1

Vulnerabilities

Vulnerable Software

Letterman: >> Letterman >> 1.2.3 Security Vulnerabilities

Products

Pricing

Contact Us