[VIM] disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection
Steven M. Christey
coley at linus.mitre.org
Wed Feb 3 00:00:59 UTC 2010
The CVE team has received a dispute of the following issue. More details
later if the vendor is willing to provide a public statement. The
software is not immediately downloadable, so I could not independently
research the issue.
SQL injection vulnerability in the JoomlaBamboo (JB) Simpla Admin
template for Joomla! allows remote attackers to execute arbitrary SQL
commands via the id parameter in an article action to the com_content
component, reachable through index.php.
More information about the VIM