Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 187150

Summary: www-apps/joomla-1.0.x SQL Injection
Product: Gentoo Security Reporter: Matt Fleming (RETIRED) <mjf>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: minor CC: web-apps
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://www.securityfocus.com/archive/1/475066/30/0/threaded
Whiteboard: B3 [upstream]
Package list:
Runtime testing required: ---

Description Matt Fleming (RETIRED) gentoo-dev 2007-07-30 17:40:49 UTC
SQL injections have been discovered in the joomla CMS. See the URL for details.
Comment 1 Gunnar Wrobel (RETIRED) gentoo-dev 2007-08-09 12:45:18 UTC
I cant reproduce the SQL injection with joomla-1.0.13 though the report has been submitted after the 1.0.13 release date. Not certain what to make of this.
Comment 2 Matt Fleming (RETIRED) gentoo-dev 2007-08-09 16:41:45 UTC
Argh, no, it seems that 1.0.13 is not vulnerable. Sorry.