Vulnerabilities > Letterman > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-19 | CVE-2007-0382 | SQL Injection vulnerability in Letterman 1.2.3 Multiple SQL injection vulnerabilities in letterman.class.php in the Letterman 1.2.3 (com_letterman) component for Joomla! before 1.0.12 allow remote attackers to execute arbitrary SQL commands via the id parameter, related to the (1) lm_sendMail, (2) saveNewsletter, and (3) cancelNewsletter functions. | 7.5 |