Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Joomla Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2009-1499 - Vulnerability Database
Joomla

Joomla Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2009-1499

High
Reference: CVE-2009-1499
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-1499
Title: Joomla Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

SQL injection vulnerability in the MailTo (aka com_mailto) component in Joomla allows remote attackers to execute arbitrary SQL commands via the article parameter in index.php. NOTE: SecurityFocus states that this issue has been disputed by the vendor.