Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in the Sigsiu Online Business Index 2 (SOBI2, com_sobi2) RC 2.8.2 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the bid parameter in a showbiz action to index.php, a different vector than CVE-2008-0607. NOTE: CVE disputes this issue, since neither "showbiz" nor "bid" appears in the source code for SOBI2
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Joomla! SQL注入漏洞
Vulnerability Description
Joomla!是一套使用在Joomla!内容管理系统中的论坛组件。 Joomla!和Mambo的SOBI2组件的实现上存在SQL注入漏洞,远程攻击者可能利用此漏洞非授权操作数据库。 SOBI2组件没有bid参数数据做充分的检查过滤,攻击者可以在输入中插入SQL语句操作数据库。
CVSS Information
N/A
Vulnerability Type
N/A