Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home

CVE-2008-0653 (com_ynews)
BugsAlert Home > CVE-2008-0653 (com_ynews)
 
 

SQL injection vulnerability in index.php in the Ynews (com_ynews) 1.0.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showYNews action.




Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0653

Learn more about CVE-2008-0653 (com_ynews)
 

Related Items
      Microsoft Security Advisory (911052): Memory Allocation Denial of Service Via RPC - 11/18/2005

      Ubuntu: libxml2 vulnerability

      WORM_GAOBOT.DF

      sBlog 0.7.3 Beta Cross Site Request Forgery

      Bugtraq: Default key algorithm in Thomson and BT Home Hub routers

      Microsoft Security Advisory (925444): Vulnerability in the Microsoft DirectAnimation Path ActiveX Control Could Allow Remote Code Execution - 11/14/2006

      FrSIRT - Nagios Unspecified Data Handling Cross Site Scripting Vulnerability

 
© 2007 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel