Lucene search
+L

CVE-2016-1000125

🗓️ 06 Oct 2016 14:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 64 Views🌐 WEB

Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Jooml

Related
Detection
Refs
Paths
NVD
Node
huge-ithuge-it_catalogMatch1.0.7joomla!
ParameterPositionPathDescriptionCWE
catalog_idrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
old_countrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
count_into_pagerequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
show_thumbsrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
show_descriptionrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
show_linkbuttonrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
parmalinkrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
levelrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
postrequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
prod_pagerequest bodycomponents/com_catalog/ajax_url.phpUnauthenticated SQL injection via load_more_elements_into_catalog in ajax_url.php (Huge-IT Catalog Joomla extension).CWE-89
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 00:38Current
9.8High risk
Vulners AI Score9.8
CVSS 27.5
CVSS 39.8
EPSS0.02495
64