Vulnerabilities > CVE-2005-3772 - Unspecified vulnerability in Joomla

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

joomla

NVD

Published: 2005-11-23

Updated: 2017-07-11

Summary

Multiple SQL injection vulnerabilities in Joomla! before 1.0.4 allow remote attackers to execute arbitrary SQL commands via the (1) Itemid variable in the Polls modules and (2) multiple unspecified methods in the mosDBTable class.

Vulnerable Configurations

Part	Description	Count
Application	Joomla Joomla Joomla 1.0 Joomla Joomla 1.0.1 Joomla Joomla 1.0.3 Joomla Joomla 1.0.2	4

References

http://www.joomla.org/content/view/499/66/
http://secunia.com/advisories/17675
http://www.securityfocus.com/bid/15526
http://www.osvdb.org/21042
http://www.osvdb.org/21043
http://www.vupen.com/english/advisories/2005/2526
https://exchange.xforce.ibmcloud.com/vulnerabilities/23178
https://exchange.xforce.ibmcloud.com/vulnerabilities/23177