Frontpage

I am totally relaxed!

Because I know Joomlamonitor is working for me. Whenever my website is down, I get an instant alert (and a copy goes to my web-host too!)
Do you wanna try?

Searching for files online? File search system - best decision. Seop for search engine optimization. Now you can build a website by yourself.

[20110201] - Core - SQL Injection / Path Disclosure

Project: Joomla!
SubProject: All
Severity: Moderate
Versions: 1.6.0
Exploit type: SQL Injection - Information Disclosure
Reported Date: 2011-January-23
Fixed Date: 2011-March-07

Description

Inadequate filtering of request variables causes database errors.

Affected Installs

Joomla! Version 1.6.0 installs.

Solution

Upgrade to the latest Joomla! version (16.1 or later)

Reported by YGN Ethical Hacker Group

Contact

The JSST at the Joomla! Security Center.

Read full...

Author:

< Prev		Next >

More Articles in This Category
[20100423] - Core - Password Reset Tokens [20111101] - Core - XSS Vulnerability [20090601] - Core - com_users XSS [20110604] - XSS Vulnerability [20101001] - Core - XSS Vulnerabilities	[20110901] - Core - XSS Vulnerability [20090603] - Core - Frontend XSS [20120203] - Core - Information Disclosure [20120103] - Core - Information Disclosure [20100501] - Core - XSS Vulnerabilities in Back End