Unrated severityNVD Advisory· Published Dec 4, 2009· Updated Jun 16, 2026
CVE-2009-4199
CVE-2009-4199
Description
Multiple SQL injection vulnerabilities in the Mambo Resident (aka Mos Res or com_mosres) component 1.0f for Mambo and Joomla!, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) property_uid parameter in a viewproperty action to index.php and the (2) regID parameter in a showregion action to index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:mamboforge:com_mosres:1.0f:*:*:*:*:*:*:*
- Range: =1.0f
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.