CVE-2010-2908

SQL injection vulnerability in the Joomdle (com_joomdle) component 0.24 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the course_id parameter in a detail action to index.php.

Date published : 2010-07-28

http://www.exploit-db.com/exploits/14466

http://packetstormsecurity.org/1007-exploits/joomlajoomdle-sql.txt