CVE-2009-0706

SQL injection vulnerability in the Simple Review (com_simple_review) component 1.3.5 for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the category parameter to index.php.

Date published : 2009-02-23

http://www.securityfocus.com/bid/33102

http://packetstormsecurity.org/0901-exploits/joomlasimplereview-sql.txt