CVE

Id
47616  
CVE No.
CVE-2010-5032  
Status
Candidate  
Description
SQL injection vulnerability in the BF Quiz (com_bfquiztrial) component before 1.3.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a bfquiztrial action to index.php.  
Phase
Assigned (20111102)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
519012 47616 CVE-2010-5032 MISC:http://packetstormsecurity.org/1005-exploits/joomla_com_bfquiz_sploit.py.txt  View
519013 47616 CVE-2010-5032 MISC:http://www.packetstormsecurity.org/1005-exploits/joomlabfquiz-sql.txt  View
519014 47616 CVE-2010-5032 MISC:http://xenuser.org/documents/security/joomla_com_bfquiz_sqli.txt  View
519015 47616 CVE-2010-5032 CONFIRM:http://www.tamlyncreative.com.au/software/forum/index.php?topic=729.0  View
519016 47616 CVE-2010-5032 BID:40435  View
519017 47616 CVE-2010-5032 URL:http://www.securityfocus.com/bid/40435  View
519018 47616 CVE-2010-5032 OSVDB:65001  View
519019 47616 CVE-2010-5032 URL:http://osvdb.org/65001  View
519020 47616 CVE-2010-5032 SECUNIA:39960  View
519021 47616 CVE-2010-5032 URL:http://secunia.com/advisories/39960  View
519022 47616 CVE-2010-5032 VUPEN:ADV-2010-1272  View
519023 47616 CVE-2010-5032 URL:http://www.vupen.com/english/advisories/2010/1272  View
519024 47616 CVE-2010-5032 XF:bfquiz-index-sql-injection(58979)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
32978 JVNDB-2011-003218 iScripts eSwap の addsale.php におけるSQL インジェクションの脆弱性 iScripts eSwap の addsale.php には、SQL インジェクションの脆弱性が存在します。 CVE-2010-5036 47616 7.5 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-003218.html  View