📦

sobi2

Vendor: sigsiu.net

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.26% Exploit Prob.

Latest CVE CVE-2009-0380 Feb 02

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2009-0380

Exploit Found

SQL injection vulnerability in the Sigsiu Online Business Index 2 (SOBI2, com_sobi2) RC 2.8.2 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the bid parameter in a showbiz action to index.php, a different vector than CVE-2008-0607. NOTE: CVE disputes this issue, since neither "showbiz" nor "bid" appears in the source code for SOBI2

EPSS: 0.49%

Severity: HIGH

Feb 02, 2009

7.5 CVSS

CVE-2008-0607

SQL injection vulnerability in index.php in the Sigsiu Online Business Index 2 (SOBI2, com_sobi2) 2.5.3 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the catid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

EPSS: 0.02%

Severity: HIGH

Feb 06, 2008

Displaying 2 of 2 Total Entries

Total 1 Sections