Описание
SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component before 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the answer_id[] parameter.
SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component before 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the answer_id[] parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-7219
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90519
- https://www.htbridge.com/advisory/HTB23193
- http://2glux.com/forum/sexypolling/sexy-polling-security-vulnerability-notification-t2026.html
- http://www.securityfocus.com/archive/1/530789/100/0/threaded
Связанные уязвимости
nvd
около 12 лет назад
SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component before 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the answer_id[] parameter.