CVE-2010-2254 Information

Description

SQL injection vulnerability in the Shape5 Bridge of Hope template for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an article action to index.php.

Reference

http://packetstormsecurity.org/1001-exploits/joomlaboh-sql.txt http://www.exploit-db.com/exploits/10964 http://www.securityfocus.com/bid/37602 http://www.vupen.com/english/advisories/2010/0019