Unrated severityNVD Advisory· Published Feb 14, 2008· Updated Apr 23, 2026

CVE-2008-0773

Description

SQL injection vulnerability in Phil Taylor Comments (com_comments, aka Review Script) 0.5.8.5g and earlier component for Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected products

Joomla/Com Comments
cpe:2.3:a:joomla:com_comments:*:*:*:*:*:*:*:*
Range: <=0.5.8.5g
Mambo (software)/Com Comments
cpe:2.3:a:mambo:com_comments:*:*:*:*:*:*:*:*
Range: <=0.5.8.5g
Phil Taylor/Comments
cpe:2.3:a:phil_taylor:comments:*:*:*:*:*:*:*:*
Range: <=0.5.8.5g
Phil Taylor/Review Script
cpe:2.3:a:phil_taylor:review_script:*:*:*:*:*:*:*:*
Range: <=0.5.8.5g

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/27731nvd
www.exploit-db.com/exploits/5094nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000