CVE-2010-4517

Publication date

2010-12-09 20:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component 1.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the char parameter in an item action to index.php.