Frontpage

I am totally relaxed!

Because I know Joomlamonitor is working for me. Whenever my website is down, I get an instant alert (and a copy goes to my web-host too!)
Do you wanna try?

Searching for files online? File search system - best decision. Seop for search engine optimization. Now you can build a website by yourself.

[20110408] - Core - SQL Injection

Project: Joomla!
SubProject: All
Severity: Medium
Versions: 1.6.1 and 1.6.0
Exploit type: SQL Injection
Reported Date: 2011-March-12
Fixed Date: 2011-April-14

Description

Unescaped values in query leads to SQL injection vulnerability.

Affected Installs

Joomla! version 1.6.1 and 1.6.0 versions

Solution

Upgrade to the latest Joomla! version (1.6.2 or later)

Reported by anonymous.

Contact

The JSST at the Joomla! Security Center.

Read full...

Author:

< Prev		Next >

More Articles in This Category
[20110404] - Core - XSS Vulnerabilities [20100701] - Core - SQL Injection / Internal Path Exposure [20110305] - Core - CSRF Vulnerability [20100501] - Core - XSS Vulnerabilities in Back End [20100704] - Core - XSS Vulnerabillitis in Back End	[20090722] - Core - File Upload [20100423] - Core - Password Reset Tokens [20120307] - Core - Information Disclosure [20110203] - Core - XSS Vulnerabilities [20101101] - Core - XSS Vulnerabilities