Lucene search

K

MitreCVELIST:CVE-2010-4838

HistorySep 13, 2011 - 9:00 p.m.

CVE-2010-4838

2011-09-1321:00:00

mitre

www.cve.org

3

AI Score

7.9

Confidence

Low

EPSS

0.001

Percentile

31.1%

SQL injection vulnerability in the JSupport (com_jsupport) component 1.5.6 for Joomla! allows remote authenticated users, with Public Back-end permissions, to execute arbitrary SQL commands via the alpha parameter in a (1) listTickets or (2) listFaqs action to administrator/index.php.

References

packetstormsecurity.org/files/view/95797/joomlajsupport-sql.txt

secunia.com/advisories/42262

securityreason.com/securityalert/8379

www.exploit-db.com/exploits/15502

www.xenuser.org/documents/security/Joomla_com_jsupport_SQLi.txt

AI Score

7.9

Confidence

Low

EPSS

0.001

Percentile

31.1%

Related for CVELIST:CVE-2010-4838

nvd1 prion1 cve1 exploitdb1