Ascii for Breakfast » com_golfcourseguide http://www.xenuser.org Tue, 29 Nov 2011 23:19:03 +0000 en hourly 1 http://wordpress.org/?v=3.0.4 Joomla Component com_golfcourseguide SQL Injection Vulnerability http://www.xenuser.org/2010/07/23/joomla-component-com_golfcourseguide-sql-injection-vulnerability/ http://www.xenuser.org/2010/07/23/joomla-component-com_golfcourseguide-sql-injection-vulnerability/#comments Fri, 23 Jul 2010 15:32:15 +0000 valentin http://www.xenuser.org/?p=966 Please download/view the original advisory here.

The Joomla component com_golfcourseguide fails to sanitize the user input and therefore suffers from a remote SQL injection vulnerability.

Example URL
index.php?option=com_golfcourseguide&view=golfcourses&cid=1&id=[SQL Injection]

Versions affected
v0.9.6.0 beta, v1 beta

]]> http://www.xenuser.org/2010/07/23/joomla-component-com_golfcourseguide-sql-injection-vulnerability/feed/ 0