5 matches found
Joomla Core com_admin Component SQL Injection (CVE-2018-6376)
A SQL injection vulnerability exists in Joomla Core comadmin component. The vulnerability is due to a lack of type casting on a variable used in a SQL statement. A remote attacker can exploit this vulnerability to escalate their privilege...
CVE-2018-6376
creationtimestamp| type| source ---|---|--- 2018-02-09 18:12:17+00:00| seen| https://t.me/canyoupwnme/3223 2021-01-07 21:17:36+00:00| published-proof-of-concept| Telegram/ELp7-iIDiecmdH1RYNFuXslf5yrqKKOhnw0CBvUrc8AgfQ 2023-10-25 07:54:46+00:00| published-proof-of-concept|...
CVE-2018-6376
In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message...
CVE-2018-6376
In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message...
CVE-2018-6376
CVE-2018-6376 ( Joomla! ) describes a SQL injection vulnerability in the Hathor postinstall message due to the lack of type casting of a variable within a SQL statement in Joomla! versions prior to 3.8.4. Affected is Joomla! up to 3.8.3. Root cause: improper handling of input in SQL context leadi...