Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3481

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3481
Last Modified 07 Mar 2011 09:38:43
Published 10 Jul 2006 04:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3481

Summary

Multiple SQL injection vulnerabilities in Joomla! before 1.0.10 allow remote attackers to execute arbitrary SQL commands via unspecified parameters involving the (1) "Remember Me" function, (2) "Related Items" module, and the (3) "Weblinks submission".

Vulnerable Systems

Application

  • Joomla 1.0

  • Joomla 1.0.1

  • Joomla 1.0.2

  • Joomla 1.0.3

  • Joomla 1.0.4

  • Joomla 1.0.5

  • Joomla 1.0.7

  • Joomla 1.0.8

  • Joomla 1.0.9


References

BID - 18742

SECUNIA - 20874

VUPEN - ADV-2006-2608

OSVDB - 26912

CONFIRM - http://www.joomla.org/content/view/1511/78/

CONFIRM - http://www.joomla.org/content/view/1510/74/

XF - joomla-rememberme-relateditems-sql-injection(27520)

OSVDB - 26911

OSVDB - 26910


Last Updated: 27 May 2016 10:43:02