CVE-2009-1848 Information

Description

SQL injection vulnerability in the JoomlaMe AgoraGroups (aka AG or com_agoragroup) component 0.3.5.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a groupdetail action to index.php.

Reference

http://www.securityfocus.com/bid/35118 https://www.exploit-db.com/exploits/8814