NuytsTech Security

CVE-2014-0794

by ·

SQL injection vulnerability in the JV Comment (com_jvcomment) component before 3.0.3 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a comment.like action to index.php.

Date published : 2014-01-26

http://www.securityfocus.com/bid/64661

http://www.securityfocus.com/archive/1/530872/100/0/threaded

Tags: