Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0754

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0754
Last Modified 19 Sep 2009 12:00:00
Published 13 Feb 2008 03:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0754

Summary

Multiple SQL injection vulnerabilities in index.php in the Rapid Recipe (com_rapidrecipe) 1.6.5 component for Joomla! allow remote attackers to execute arbitrary SQL commands via (1) the user_id parameter in a showuser action or (2) the category_id parameter in a viewcategorysrecipes action.

Vulnerable Systems

Application

  • Joomla Com Rapidrecipe 1.6.5


References

BID - 27724

BUGTRAQ - 20080210 Default Multiple Joomla! Component com_rapidrecipe "user_id=" Remote SQL Inj.

SREASON - 3649

SECUNIA - 28883


Last Updated: 27 May 2016 10:46:55