SQL injection vulnerability in the Joomdle (com_joomdle) component 0.24 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the course_id parameter in a detail action to index.php.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-89,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| joomdle | com_joomdle | 0.2 |
| joomdle | com_joomdle | 0.23 |
| joomdle | com_joomdle | * |
| joomdle | com_joomdle | 0.22 |
| joomdle | com_joomdle | 0.21 |