[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97559

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2012-3554

Date: (C)2012-08-10   (M)2015-12-16
 
CVSS Score: 7.5Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL











SQL injection vulnerability in the RSGallery2 (com_rsgallery2) component before 2.3.0 for Joomla! 1.5.x, and before 3.2.0 for Joomla! 2.5.x, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Reference:
http://extensions.joomla.org/extensions/photos-a-images/photo-gallery/142
http://joomlacode.org/gf/project/rsgallery2/news/
http://www.rsgallery2.nl/announcements/rsgallery2_3.2.0_and_2.3.0_released_16845.0.html

CPE    41
cpe:/a:rsgallery2:com_rsgallery2:3.2.0
cpe:/a:rsgallery2:com_rsgallery2:2.3.0
cpe:/a:rsgallery2:com_rsgallery2:1.12.2:alpha
cpe:/a:rsgallery2:com_rsgallery2:1.10.14:alpha
...
CWE    1
CWE-89

© 2013 SecPod Technologies