Back to search
CVE-2010-4166
Published: Jan 18, 2011
Modified: Sep 16, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 allow remote attackers to execute arbitrary SQL commands via (1) the filter_order parameter in a com_weblinks category action to index.php, (2) the filter_order_Dir parameter in a com_weblinks category action to index.php, or (3) the filter_order_Dir parameter in a com_messages action to administrator/index.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20101112 CVE request: Joomla 1.5.21 SQL Injection and Information Disclosure
mailing-list
x_refsource_MLIST
20101031 Joomla 1.5.21 | Potential SQL Injection Flaws
mailing-list
x_refsource_FULLDISC
42133
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20101112 Re: CVE request: Joomla 1.5.21 SQL Injection and Information Disclosure
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now