CVE-2010-4853 Information

Description

SQL injection vulnerability in the ccInvoices (com_ccinvoices) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewInv action to index.php.

Reference

http://packetstormsecurity.org/1011-exploits/joomlaccinvoices-sql.txt http://securityreason.com/securityalert/8413 http://www.exploit-db.com/exploits/15430 https://exchange.xforce.ibmcloud.com/vulnerabilities/63079