Detodas : Security Vulnerabilities, CVEs,
SQL injection vulnerability in the Detodas Restaurante (com_restaurante) 1.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php, a different product than CVE-2008-0562.
Max CVSS
9.3
EPSS Score
0.09%
Published
2008-03-24
Updated
2017-09-29
Unrestricted file upload vulnerability in the Restaurante (com_restaurante) component for Joomla! allows remote attackers to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .php.jpg, which creates an accessible file under img_original/.
Max CVSS
7.5
EPSS Score
9.71%
Published
2007-09-11
Updated
2017-09-29
2 vulnerabilities found