VYPR
Unrated severityNVD Advisory· Published Sep 10, 2007· Updated Jun 16, 2026

CVE-2007-4777

CVE-2007-4777

Description

SQL injection vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, probably related to the archive section. NOTE: this may be the same as CVE-2007-4778.

Affected products

4
  • Joomla/Joomla!4 versions
    cpe:2.3:a:joomla:joomla:1.5.0_beta:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:joomla:joomla:1.5.0_beta:*:*:*:*:*:*:*
    • cpe:2.3:a:joomla:joomla:1.5.0_beta2:*:*:*:*:*:*:*
    • cpe:2.3:a:joomla:joomla:1.5.0_rc1:*:*:*:*:*:*:*
    • (no CPE)range: <1.5 RC2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.