[VIM] disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection

Steven M. Christey coley at linus.mitre.org
Wed Feb 3 01:29:31 UTC 2010


dispute posted by vendor:

   http://www.joomlabamboo.com/blog/template-news/simpla-is-safe

He also committed to the following statement:

   JoomlaBamboo has investigated this report, and
   it is incorrect.  There is no SQL injection vulnerability involving
   the id parameter in an article view, and there never was.
   JoomlaBamboo customers have no reason to be concerned about this
   report.

- Steve


More information about the VIM mailing list