Published: 06/01/2010 Updated: 11/04/2024

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in the JoomlaBamboo (JB) Simpla Admin template for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in an article action to the com_content component, reachable through index.php. NOTE: the vendor disputes this report, saying: "JoomlaBamboo has investigated this report, and it is incorrect. There is no SQL injection vulnerability involving the id parameter in an article view, and there never was. JoomlaBamboo customers have no reason to be concerned about this report.

Vulnerable Product	Search on Vulmon	Subscribe to Product
joomlabamboo jb_simpla

[?] ?????????????????????????{In The Name Of Allah The Mercifull}?????????????????????? [?] [~] Tybe: Joomla Bamboo Simpla Admin Template suffer from REMOTe sql injection [~] Vendor: joomlabamboocom [?] Software:Joomla Bamboo Simpla Admin Template [-] [?] author: ((R3d-D3v!L)) [?] TEAM: ArAB!AN !NFORMAT!ON SeCuR!TY [?] contact: N/A [-] [?] Date: ...

CWE-89 http://www.exploit-db.com/exploits/10971 http://packetstormsecurity.org/1001-exploits/joomlabamboo-sql.txt http://www.securityfocus.com/bid/37579 http://www.vupen.com/english/advisories/2010/0014 http://www.attrition.org/pipermail/vim/2010-February/002320.html http://www.attrition.org/pipermail/vim/2010-February/002319.html https://nvd.nist.gov https://www.exploit-db.com/exploits/10971/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-0158

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect