Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2018/02/11 12:0 a.m.26 views

Joomla Core com_admin Component SQL Injection (CVE-2018-6376)

A SQL injection vulnerability exists in Joomla Core comadmin component. The vulnerability is due to a lack of type casting on a variable used in a SQL statement. A remote attacker can exploit this vulnerability to escalate their privilege...

7.5CVSS3.7AI score0.04785EPSS
Exploits1
Circl
Circl
added 2018/02/09 6:12 p.m.8 views

CVE-2018-6376

creationtimestamp| type| source ---|---|--- 2018-02-09 18:12:17+00:00| seen| https://t.me/canyoupwnme/3223 2021-01-07 21:17:36+00:00| published-proof-of-concept| Telegram/ELp7-iIDiecmdH1RYNFuXslf5yrqKKOhnw0CBvUrc8AgfQ 2023-10-25 07:54:46+00:00| published-proof-of-concept|...

9.8CVSS8.6AI score0.04785EPSS
Exploits1References3
NVD
NVD
added 2018/01/30 5:29 p.m.10 views

CVE-2018-6376

In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message...

9.8CVSS9.7AI score0.04785EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/01/30 5:0 p.m.19 views

CVE-2018-6376

In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message...

9.8AI score0.04785EPSS
Exploits1References3
CVE
CVE
added 2018/01/30 5:0 p.m.90 views

CVE-2018-6376

CVE-2018-6376 ( Joomla! ) describes a SQL injection vulnerability in the Hathor postinstall message due to the lack of type casting of a variable within a SQL statement in Joomla! versions prior to 3.8.4. Affected is Joomla! up to 3.8.3. Root cause: improper handling of input in SQL context leadi...

9.8CVSS9.6AI score0.04785EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder