Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1116

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-1116
Last Modified 15 Oct 2012 12:00:00
Published 25 Sep 2012 08:55:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1116

Summary

SQL injection vulnerability in Joomla! 1.7.x and 2.5.x before 2.5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Vulnerable Systems

Application

  • Joomla%21 1.7.0

  • Joomla%21 1.7.1

  • Joomla%21 1.7.2

  • Joomla%21 1.7.3

  • Joomla%21 1.7.4

  • Joomla%21 1.7.5

  • Joomla%21 2.5.0

  • Joomla%21 2.5.1


References

XF - joomla-unspecified-param-sql-injection(73699)

BID - 52312

OSVDB - 79837

MLIST - [oss-security] 20120306 CVE-request: Joomla! Security News 2012-03

MLIST - [oss-security] 20120306 Re: CVE-request: Joomla! Security News 2012-03

SECUNIA - 48005

CONFIRM - http://developer.joomla.org/security/news/391-20120301-core-sql-injection.html


Last Updated: 27 May 2016 11:00:48