OSVDB ID: 41219

Title: CatalogShop Component for Mambo and Joomla! index.php id Variable SQL Injection

Info

Disclosure

Jan 31, 2008

Discovery

Unknown

Dates

Exploit

Jan 31, 2008

Solution

Unknown

Description

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Available
Disclosure: Uncoordinated Disclosure
OSVDB: Web Related

Solution

Products

Unknown or Incomplete

References

Milw0rm: 5030
ISS X-Force ID: 40142
CVE ID: 2008-0557 (see also: NVD)
Vendor URL: http://webscripts.softpedia.com/script/Modules/Joomla-Mambo-Modules/CatalogShop-8 ......
http://www.joomla.org/component/option,com_frontpage/Itemid,1/
http://www.mamboserver.com/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218