Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4823

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-4823
Last Modified 09 Feb 2012 12:00:00
Published 14 Dec 2011 10:57:34
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4823

Summary

Multiple SQL injection vulnerabilities in Vik Real Estate (com_vikrealestate) component 1.0 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) contract parameter in a results action and (2) imm parameter in a show action to index.php.

Vulnerable Systems

Application

  • Extensionsforjoomla Com Vikrealestate 1.0

  • Joomla Com Vikrealestate 1.0


References

EXPLOIT-DB - 18048

MISC - http://docs.joomla.org/Vulnerable_Extensions_List#Vik_Real_Estate_1.0


Last Updated: 27 May 2016 10:57:16