CVE-2008-0839
published 2008-02-20CVE-2008-0839: SQL injection vulnerability in refer.php in the astatsPRO (com_astatspro) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.01%
58.8th percentile
SQL injection vulnerability in refer.php in the astatsPRO (com_astatspro) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| astats | astatspro | — | — |
| astats | astatspro | — | — |
| joomla | com_astatspro | — | — |
| joomla | com_astatspro | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rf6q-m37m-q323: SQL injection vulnerability in includes/count_dl_or_link
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2008-0918 [HIGH] CWE-89 GHSA-rf6q-m37m-q323: SQL injection vulnerability in includes/count_dl_or_link
SQL injection vulnerability in includes/count_dl_or_link.inc.php in the astatsPRO (com_astatspro) 1.0.1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to getfile.php, a different vector than CVE-2008-0839. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
GHSA
GHSA-gpgm-9mr9-v2qj: SQL injection vulnerability in refer
ghsa_unreviewed·2022-05-01
CVE-2008-0839 [HIGH] CWE-89 GHSA-gpgm-9mr9-v2qj: SQL injection vulnerability in refer
SQL injection vulnerability in refer.php in the astatsPRO (com_astatspro) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/29008http://www.securityfocus.com/bid/27850https://exchange.xforce.ibmcloud.com/vulnerabilities/40611https://www.exploit-db.com/exploits/5138http://secunia.com/advisories/29008http://www.securityfocus.com/bid/27850https://exchange.xforce.ibmcloud.com/vulnerabilities/40611https://www.exploit-db.com/exploits/5138
2008-02-20
Published