CVE-2010-4404

Опубликовано: 06 дек. 2010

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in the Yannick Gaultier sh404SEF component before 2.1.8.777 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:anything-digital:sh404sef:*:*:*:*:*:*:*:*

Версия до 2.1.7.761 (включая)

cpe:2.3:a:anything-digital:sh404sef:1.5.2.255:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.3.296:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.4.302:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.5.388:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.6.398:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.7.407:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.8.432:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.9.434:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.10.446:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.11.459:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:1.5.12.464:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.0.0:rc522:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.0.1.531:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.0.2.542:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.0.3.545:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.1.0.641:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.1.1.644:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.1.2.649:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.1.3.680:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.1.4.734:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.1.5.746:*:*:*:*:*:*:*

cpe:2.3:a:anything-digital:sh404sef:2.1.6.749:*:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00397

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-v283-44v6-4392

github

больше 3 лет назад