CVE-2010-4977
published 2011-11-01CVE-2010-4977: SQL injection vulnerability in menu.php in the Canteen (com_canteen) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via…
PriorityP357high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
15.25%
96.4th percentile
SQL injection vulnerability in menu.php in the Canteen (com_canteen) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the mealid parameter to index.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| miniwork | com_canteen | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Joomla! Component Canteen 1.0 - Local File Inclusion
exploitdb·2010-07-05
CVE-2010-4977 Joomla! Component Canteen 1.0 - Local File Inclusion
Joomla! Component Canteen 1.0 - Local File Inclusion
---
source: https://www.securityfocus.com/bid/41358/info
The Miniwork Studio Canteen component for Joomla! is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data.
Attackers can exploit the SQL-injection vulnerability to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute arbitrary local files within the context of the webserver process. Information harvested may aid in further attacks.
Canteen 1.0 is vulnerable; other versions may also be affected.
http://www.example.com/
Nuclei
Joomla! Component Canteen 1.0 - Local File Inclusion
nuclei·CVSS 7.5
CVE-2010-4977 [HIGH] Joomla! Component Canteen 1.0 - Local File Inclusion
Joomla! Component Canteen 1.0 - Local File Inclusion
A SQL injection vulnerability in menu.php in the Canteen (com_canteen) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the mealid parameter to index.php.
Template:
id: CVE-2010-4977
info:
name: Joomla! Component Canteen 1.0 - Local File Inclusion
author: daffainfo
severity: high
description: A SQL injection vulnerability in menu.php in the Canteen (com_canteen) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the mealid parameter to index.php.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized access to sensitive files, remote code execution, and potential compromise of the entire Joomla! installation.
remediation: Upgrade to
No writeups or analysis indexed.
http://osvdb.org/66031http://packetstormsecurity.org/1007-exploits/joomlacanteen-lfisql.txthttp://secunia.com/advisories/40503http://securityreason.com/securityalert/8495http://www.salvatorefresta.net/files/adv/Canteen%20Joomla%20Component%201.0%20Multiple%20Remote%20Vulnerabilities-04072010.txthttp://www.securityfocus.com/archive/1/512170/100/0/threadedhttp://www.securityfocus.com/bid/41358https://exchange.xforce.ibmcloud.com/vulnerabilities/60103http://osvdb.org/66031http://packetstormsecurity.org/1007-exploits/joomlacanteen-lfisql.txthttp://secunia.com/advisories/40503http://securityreason.com/securityalert/8495http://www.salvatorefresta.net/files/adv/Canteen%20Joomla%20Component%201.0%20Multiple%20Remote%20Vulnerabilities-04072010.txthttp://www.securityfocus.com/archive/1/512170/100/0/threadedhttp://www.securityfocus.com/bid/41358https://exchange.xforce.ibmcloud.com/vulnerabilities/60103
2011-11-01
Published