Description
SQL injection vulnerability in the Showroom Joomlearn LMS (com_lms) component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showTests task.
Exploits
315952008-04-03webappsPHP
Joomla! / Mambo Component Showroom Joomlearn LMS - 'cat' SQL Injection
By The-0utl4w
References
cve@mitre.org
http://www.securityfocus.com/bid/28586af854a3a-2127-422b-91ae-364da2661108
http://archives.neohapsis.com/archives/bugtraq/2008-04/0031.htmlaf854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/490410/100/0/threadedaf854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/28586af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/41614