Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6362

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6362
Last Modified 05 Sep 2008 05:33:03
Published 14 Dec 2007 08:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6362

Summary

SQL injection vulnerability in index.php in the RSGallery (com_rsgallery) 2.0 beta 5 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an inline page action.

Vulnerable Systems

Application

  • Joomla Rs Gallery2 Beta 5


References

MILW0RM - 4691

BID - 26704

BUGTRAQ - 20071205 [ECHO_ADV_86$2007] Mambo/Joomla Component rsgallery <= 2.0 beta 5 (catid) Remote SQL Injection Vulnerability

MISC - http://advisories.echo.or.id/adv/adv86-K-159-2007.txt


Last Updated: 27 May 2016 10:46:28