vendor:
altas
by:
Houssamix From H-T Team
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: altas
Affected Version From: 1
Affected Version To: 1
Patch Exists: YES
Related CWE: N/A
CPE: a:ilihost:altas
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2007
Joomla Component altas v 1.0 Multiple Remote SQL Injection
A vulnerability in Joomla Component altas v 1.0 allows an attacker to inject malicious SQL commands into the vulnerable application. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code in the 'mes' and 'ano' parameters of the 'index.php' script. Successful exploitation of this vulnerability can allow an attacker to gain access to sensitive information from the database, modify data, or exploit further vulnerabilities.
Mitigation:
The vendor has released an update to address this vulnerability. Users are advised to update to the latest version of the component.