Vulnerabilities > CVE-2006-6945 - Unspecified vulnerability in Virtuemart 1.0.7

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN

Summary

SQL injection vulnerability in Virtuemart 1.0.7 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, probably related to (1) Itemid, (2) product_id, and category_id parameters as handled in virtuemart_parser.php.

Vulnerable Configurations

Part Description Count
Application
Virtuemart
1

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/151672/joomlavirtuemart341-sql.txt
idPACKETSTORM:151672
last seen2019-02-14
published2019-02-14
reporterKingSkrupellos
sourcehttps://packetstormsecurity.com/files/151672/Joomla-VirtueMart-3.4.1-SQL-Injection.html
titleJoomla VirtueMart 3.4.1 SQL Injection