Joomla! Component com_bnf - 'seccion_id' SQL Injection
| EKU-ID: 41197 | CVE: | OSVDB-ID: |
| Author: Daniel Godoy | Published: 2012-02-02 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 41197 | CVE: | OSVDB-ID: |
| Author: Daniel Godoy | Published: 2012-02-02 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/51802/info The 'com_bnf' component for Joomla! is prone to a remote SQL injection vulnerability. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. http://www.example.com/index.php?option=com_bnf&task=listar&action=filter_add&seccion=pago&seccion_id=[SQL Injection]&direccion=&direct=0&Itemid=0&lang=es