AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2010-1874: SQL injection vulnerability in the Real Estate Property (com_properties) component 3.1.22-03 for Joomla! allows remote a

infovulnerability

security

Source: NVD/CVE DatabaseMay 12, 2010CVE-2010-1874

Summary

A SQL injection vulnerability (CWE-89, a weakness where attackers insert malicious SQL commands into user input) was found in the Real Estate Property component version 3.1.22-03 for Joomla! (a website building platform). Remote attackers could exploit this by sending specially crafted requests to the aid parameter in an agentlisting action, allowing them to execute arbitrary SQL commands on the server.

Vulnerability Details

CVSS Score

7.5

EPSS (30-day exploit probability)

EPSS: 0.1%

Classification

Attack SophisticationTrivial

Taxonomy References

CWE (Weakness Type)

CWE-89

CAPEC (Attack Pattern)

CAPEC-66

Original source: https://nvd.nist.gov/vuln/detail/CVE-2010-1874

First tracked: February 15, 2026 at 08:53 PM

Classified by LLM (prompt v3) · confidence: 95%