Lucene search
HistoryOct 03, 2022 - 4:20 p.m.
CVE-2014-9102
cve-2014-9102
sql injection
kunena
joomla
security vulnerability
8.3 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
55.7%
Multiple SQL injection vulnerabilities in the Kunena component before 3.0.6 for Joomla! allow remote authenticated users to execute arbitrary SQL commands via the index value in an array parameter, as demonstrated by the topics[] parameter in an unfavorite action to index.php.
Affected configurations
Node
kunenakunenaRange≤3.0.5joomla\!
| CPE | Name | Operator | Version |
|---|---|---|---|
| kunena:kunena | kunena | le | 3.0.5 |
Related
prion
prion
Sql injection
2014-11-26 15:59:00
cvelist
cvelist
CVE-2014-9102
2022-10-03 16:20:40
nvd
nvd
CVE-2014-9102
2014-11-26 15:59:17
openvas
openvas
Joomla Kunena Forum Extension < 3.0.6 Multiple Vulnerabilities
2017-03-23 00:00:00
8.3 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
55.7%
Related for CVE-2014-9102