Exploit for SQL Injection in Joomla Joomla\!

CVE-2017-8917 Joomla SQLi PoC This repository contains a simp...

PT-2022-16268 · Joomla · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions 3.7.0 through 3.10.6 Description: The issue is related to a lack of input validation, which could allow an XSS attack using com fields. Recommendations: For Joomla! versions 3.7.0 through 3.10.6, update to a version that...

Joomla! 跨站脚本漏洞

Joomla! is a set of forum components used in the Joomla! content management system. versions 3.7.0 to 3.10.6 have a cross-site scripting vulnerability, which originates from the comfields class that does not sufficiently clean up and escape data provided to the user, and can be used by attackers ...

Exploit for Incorrect Authorization in Joomla Joomla\!

Made by HK CVE-2020-10239: Incorrect Access Control in comf...

PT-2020-11995 · Open Source Matters · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions prior to 3.9.16 Description: An issue was discovered that allows incorrect access control in the SQL fieldtype of com fields, enabling access for non-superadmin users. Recommendations: For versions prior to 3.9.16, update to...

Joomla! com_fields component SQL injection vulnerability

Joomla! is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source , cross-platform content management system CMS. A SQL injection vulnerability exists in the comfields component in Joomla! version 3.7.0, which allows remote attackers to obtain sensitive database...