Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4777

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4777
Last Modified 05 Feb 2009 12:00:00
Published 10 Sep 2007 05:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4777

Summary

SQL injection vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, probably related to the archive section. NOTE: this may be the same as CVE-2007-4778.

Vulnerable Systems

Application

  • Joomla 1.5.0 Beta

  • Joomla 1.5.0 Beta2

  • Joomla 1.5.0 Rc1


References

XF - joomla-filter-sql-injection(36423)

BID - 25508

CONFIRM - http://www.joomla.org/content/view/3831/1/

BUGTRAQ - 20070903 Multiple vulnerabilities in Joomla 1.5 RC 1

SREASON - 3108

OSVDB - 39072

OSVDB - 39071

OSVDB - 39070


Last Updated: 27 May 2016 10:45:58