HTTP: Joomla CCBoard Component topic Parameter SQL Injection
This signature detects attempts to exploit a known vulnerability in the Joomla's com_ccboard component. It is due to insufficient validation of user-supplied input. An attacker can exploit this issue by manipulating the SQL query logic to carry out unauthorized actions on the underlying database.
Extended Description
http://www.noticeboardpro.com/notice-board-pro-copyright.htmlJoomla CCBoard is prone to an SQL-injection vulnerability and an arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data. Exploiting these issues could allow an attacker to compromise the application, execute arbitrary code, access or modify data, or exploit latent vulnerabilities in the underlying database.
Affected Products
Joomla ccboard
Short Name
HTTP:SQL:INJ:JOOMLA-COM-CCBOARD
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CCBoard Component Injection Joomla Parameter SQL bid:48108 topic
Release Date
06/10/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Joomla