Description
SQL injection vulnerability in the AutarTimonial (com_autartimonial) component 1.0.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the limit parameter in an autartimonial action to index.php. NOTE: some of these details are obtained from third party information.
Affected products
- autartica / com_autartimonial1.0.8 – 1.0.8
References
- MISChttp://osvdb.org/66036
- VENDOR_ADVISORYhttp://secunia.com/advisories/40449
- MISChttp://securityreason.com/securityalert/8501
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/60122
- EXPLOIThttp://packetstormsecurity.org/1007-exploits/joomlaautartimonial-sql.txt
- MISChttp://www.securityfocus.com/bid/41400
- EXPLOIThttp://www.exploit-db.com/exploits/14249
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2010/1739