CVE-2008-0603

Description

SQL injection vulnerability in index.php in the amazOOP Awesom! (com_awesom) 0.3.2component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter in a viewlist task.

Affected products

• amazoop / awesom0.3.2 – 0.3.2
• Joomla! / com_awesom0.3.2 – 0.3.2
• Mambo / com_awesom0.3.2 – 0.3.2

References

• EXPLOIThttps://www.exploit-db.com/exploits/5058
• MISChttp://www.securityfocus.com/bid/27607