Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7033

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-7033
Last Modified 24 Aug 2009 12:00:00
Published 24 Aug 2009 06:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-7033

Summary

SQL injection vulnerability in the Simple Shop Galore (com_simpleshop) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the section parameter in a section action to index.php, a different vulnerability than CVE-2008-2568. NOTE: this issue was disclosed by an unreliable researcher, so the details might be incorrect.

Vulnerable Systems

Application

  • Galore Com Simpleshop


References

XF - simpleshop-index-sql-injection(40802)

BID - 27977

BUGTRAQ - 20080224 joomla com_simpleshop SQL Injection(section) #

OSVDB - 52094


Last Updated: 27 May 2016 10:49:26