CVE-2008-0816 Information

Description

SQL injection vulnerability in the com_sg component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the pid parameter in an order task.

Reference

http://securityreason.com/securityalert/3664 http://www.securityfocus.com/archive/1/488272/100/0/threaded http://www.securityfocus.com/bid/27821