VYPR
Unrated severityNVD Advisory· Published Jan 2, 2020· Updated Aug 6, 2024

CVE-2013-3932

CVE-2013-3932

Description

SQL injection vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to execute arbitrary SQL commands via the id parameter in an editProfile action to administrator/index.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Joomla/jomresllm-create
    Range: <7.3.1
  • Jomres/Jomres component for Joomla!v5
    Range: before 7.3.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.