CVE-2007-6272

Name of the Vulnerable Software and Affected Versions Joomla! version 1.5 RC3

Description The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved through the view parameter to the com content component, the task parameter to the com search component, or the option parameter in a search action to the com search component.

Recommendations For Joomla! version 1.5 RC3, consider updating to a newer version to mitigate the risk of SQL injection attacks. As a temporary workaround, restrict access to the com content and com search components to minimize the risk of exploitation. Avoid using the view, task, and option parameters in the affected components until the issue is resolved.