CVE-2008-0517

SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote attackers to execute arbitrary SQL commands via the objid parameter in a contact showObject action.
SQL Injection
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
darko_selesiestateagent
0.1
joomlajoomla
*
mambomambo
4.5
mambomambo
4.5.0.2
mambomambo
4.5.1.3
mambomambo
4.5.1_1.0.9
mambomambo
4.5.1_beta
mambomambo
4.5.1_beta2
mambomambo
4.5.1a
mambomambo
4.5.2
mambomambo
4.5.2.1
mambomambo
4.5.2.2
mambomambo
4.5.2.3
mambomambo
4.5.3h
mambomambo
4.5.4
mambomambo
4.5_1.0.0
mambomambo
4.5_1.0.1
mambomambo
4.5_1.0.2
mambomambo
4.5_1.0.3_beta
mambomambo
4.5_1.0.9
𝑥
= Vulnerable software versions