Lucene search
MitreCVE-2010-4517HistoryDec 09, 2010 - 9:00 p.m.
CVE-2010-4517
2010-12-0921:00:02
CWE-89
mitre
web.nvd.nist.gov
27
cve
sql injection
vulnerability
je auto
joomla
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
33.0%
SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component 1.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the char parameter in an item action to index.php.
Affected configurations
Node
harmistechnologycom_jeautoMatch1.0
joomlajoomla\!
| Vendor | Product | Version | CPE |
|---|---|---|---|
| harmistechnology | com_jeauto | 1.0 | cpe:2.3:a:harmistechnology:com_jeauto:1.0:*:*:*:*:*:*:* |
| joomla | joomla\! | * | cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:* |
References
Related
nvd
nvd
CVE-2010-4517
2010-12-09 21:00:02
cvelist
cvelist
CVE-2010-4517
2010-12-09 20:00:00
exploitdb
exploitdb
Joomla! Component JE Auto 1.0 - SQL Injection
2010-12-09 00:00:00
prion
prion
Sql injection
2010-12-09 21:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
33.0%
Related for CVE-2010-4517