CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Joomla! is a U.S. Open Source Matters team using PHP and MySQL development of a set of open source , cross-platform content management system CMS. Auction Factory is used in one of the auction component . An SQL injection vulnerability exists in Joomla! The vulnerability stems from a lack of...

9.8CVSS8.2AI score0.00307EPSS

Exploits1References1

CNVD•added 2019/06/21 12:0 a.m.•1 views

Dutch Auction Factory Component SQL Injection Vulnerability in Joomla!

Joomla! is a U.S. Open Source Matters team using PHP and MySQL development of a set of open source, cross-platform content management system CMS. Dutch Auction Factory is used in one of the auction site to create extensions . A SQL injection vulnerability exists in the Dutch Auction Factory...

9.8CVSS8.1AI score0.00602EPSS

Exploits1References1

OSV•added 2019/06/19 6:15 p.m.•1 views

CVE-2018-17381

SQL Injection exists in the Dutch Auction Factory 2.0.2 component for Joomla! via the filterorderDir or filterorder parameter...

9.8CVSS5.8AI score

Exploits0References2

NVD•added 2019/06/19 6:15 p.m.•8 views

CVE-2018-17381

SQL Injection exists in the Dutch Auction Factory 2.0.2 component for Joomla! via the filterorderDir or filterorder parameter...

9.8CVSS10AI score0.00602EPSS

Exploits1References2

OSV•added 2019/06/19 6:15 p.m.•1 views

CVE-2018-17374

SQL Injection exists in the Auction Factory 4.5.5 component for Joomla! via the filterorderDir or filterorder parameter...

9.8CVSS5.8AI score

Exploits0References2

NVD•added 2019/06/19 6:15 p.m.•9 views

CVE-2018-17374

SQL Injection exists in the Auction Factory 4.5.5 component for Joomla! via the filterorderDir or filterorder parameter...

9.8CVSS10AI score0.00307EPSS

Exploits1References2

Prion•added 2019/06/19 6:15 p.m.•9 views

Sql injection

SQL Injection exists in the Auction Factory 4.5.5 component for Joomla! via the filterorderDir or filterorder parameter...

7.5CVSS9.8AI score0.00307EPSS

Exploits1References2Affected Software1

Prion•added 2019/06/19 6:15 p.m.•12 views

Sql injection

SQL Injection exists in the Dutch Auction Factory 2.0.2 component for Joomla! via the filterorderDir or filterorder parameter...

7.5CVSS9.8AI score0.00602EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/06/19 5:18 p.m.•11 views

CVE-2018-17374

SQL Injection exists in the Auction Factory 4.5.5 component for Joomla! via the filterorderDir or filterorder parameter...

10AI score0.00307EPSS

Exploits1References2

CVE•added 2019/06/19 5:18 p.m.•73 views

CVE-2018-17374

CVE-2018-17374 describes a SQL Injection in the Joomla! Auction Factory 4.5.5 component exposed through the filter_order_Dir or filter_order parameters. The vulnerability stems from unsafe handling of externally entered SQL statements in this component. According to the linked records, the CVE ha...

9.8CVSS9.8AI score0.00307EPSS

Exploits1References2Affected Software1

CVE•added 2019/06/19 5:17 p.m.•82 views

CVE-2018-17381

The CVE-2018-17381 vulnerability affects the Joomla! Dutch Auction Factory 2.0.2 component. A SQL Injection exists via the filter_order_Dir or filter_order parameter due to insufficient validation of externally supplied SQL statements in the database layer, enabling potentially unauthorized queri...

9.8CVSS9.8AI score0.00602EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/06/19 5:17 p.m.•9 views

CVE-2018-17381

SQL Injection exists in the Dutch Auction Factory 2.0.2 component for Joomla! via the filterorderDir or filterorder parameter...

10AI score0.00602EPSS

Exploits1References2

OSV•added 2018/09/28 12:29 a.m.•1 views

CVE-2018-17378

SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filterorderDir or filterorder parameter...

9.8CVSS5.8AI score

Exploits0References2