Lucene search
+L

111 matches found

NVD
NVD
added 2018/06/12 5:29 p.m.27 views

CVE-2018-12254

router.php in the Harmis Ek rishta aka ek-rishta 2.10 component for Joomla! allows SQL Injection via the PATHINFO to a home/requesteduser/Sent%20interest/ URI...

8.8CVSS9AI score0.02616EPSS
Exploits5References2
CVE
CVE
added 2018/06/12 5:0 p.m.69 views

CVE-2018-12254

CVE-2018-12254 affects the Joomla! Ek Rishta (Harmis Ek rishta) 2.10 component. The vulnerability is a SQL injection in router.php that can be triggered via PATH_INFO to the URI path home/requested_user/Sent%20interest/[username], due to improper handling of input. This allows arbitrary SQL comma...

8.8CVSS8.9AI score0.02616EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2018/06/12 5:0 p.m.28 views

CVE-2018-12254

router.php in the Harmis Ek rishta aka ek-rishta 2.10 component for Joomla! allows SQL Injection via the PATHINFO to a home/requesteduser/Sent%20interest/ URI...

9AI score0.02616EPSS
Exploits5References2
Packet Storm
Packet Storm
added 2018/06/11 12:0 a.m.26 views

Joomla Ek Rishta 2.10 SQL Injection

Exploit Title: Joomla! Component Ek Rishta 2.10 - SQL Injection Dork: N/A Date: 08.06.2018 Vendor Homepage: https://www.joomlaextensions.co.in/ Software Link: https://extensions.joomla.org/extension/ek-rishta/ Version: 2.10 Tested on: WiN7x64/ video : https://youtu.be/UWGFVUU9AU0 Exploit Author:...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2018/05/16 11:19 a.m.12 views

RIG EK Still Makes Waves, This Time with a Stealthy Backdoor

Exploit kit activity has been declining since the latter half of 2016, but the RIG EK seems to buck the trend. It’s been involved in ongoing activity involving a wide range of crimeware payloads; and the latest campaign saw RIG dropping the Grobios malware, which is tailored to be a really stealt...

7.2AI score
Exploits0References2
FireEye
FireEye
added 2018/05/14 9:0 a.m.492 views

A Deep Dive Into RIG Exploit Kit Delivering Grobios Trojan

As discussed in previous blogs, exploit kit activity has been on the decline since the latter half of 2016. However, we do still periodically observe significant developments in this space, and we have been observing interesting ongoing activity involving RIG Exploit Kit EK. Although the volume o...

Exploits0
Malwarebytes
Malwarebytes
added 2018/04/17 4:58 p.m.1268 views

Magnitude exploit kit switches to GandCrab ransomware

The GandCrab ransomware is reaching far and wide via malspam, social engineering schemes, and exploit kit campaigns. On April 16, we discovered that Magnitude EK, which had been loyal to its own Magniber ransomware, was now being leveraged to push out GandCrab, too. While Magnitude EK remains...

7.6CVSS9.4AI score0.93165EPSS
Exploits29
Malwarebytes
Malwarebytes
added 2018/03/29 3:0 p.m.586 views

Exploit kits: Winter 2018 review

In the past, we used to do a blog series on exploit kits where we would periodically check in on the main players in the market. In March 2017, we wrote the Winter 2017 review, before exploit kit activity dropped down to a whisper. We've since discontinued our blog series, for lack of development...

7.6CVSS0.8AI score0.93165EPSS
Exploits29
CNVD
CNVD
added 2018/03/07 12:0 a.m.29 views

Ek Rishta SQL Injection Vulnerability in Joomla!

Joomla! is an open source content management system CMS developed by the Open Source Matters team in the U.S. The system provides RSS feeds, site search, etc. Ek Rishta is one of the wedding dating social components. A SQL injection vulnerability exists in Joomla! Ek Rishta version 2.9. A remote...

9.8CVSS7.8AI score0.02703EPSS
Exploits5References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2018/03/06 12:0 a.m.524 views

Ek rishta, 2.9, SQL Injection

Ek rishta by Harmis Technology, versions 2.9 and previous, SQL Injection Resolution: update to 2.10 update notice: https://joomlaextensions.co.in/extensions/other-extensions/product/Ek-Rishta...

9.8CVSS2.2AI score0.02703EPSS
Exploits5References3Affected Software1
Packet Storm
Packet Storm
added 2018/02/23 12:0 a.m.49 views

Joomla! Ek Rishta 2.9 SQL Injection

Exploit Title: Joomla! Component Ek Rishta 2.9 - SQL Injection Dork: N/A Date: 22.02.2018 Vendor Homepage: https://www.joomlaextensions.co.in/ Software Link: https://extensions.joomla.org/extensions/extension/living/dating-a-relationships/ek-rishta/ Version: 2.9 Category: Webapps Tested on:...

9.2AI score0.02703EPSS
Exploits5
NVD
NVD
added 2018/02/22 7:29 p.m.21 views

CVE-2018-7315

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter...

9.8CVSS9.9AI score0.02703EPSS
Exploits5References1
OSV
OSV
added 2018/02/22 7:29 p.m.4 views

CVE-2018-7315

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter...

9.8CVSS5.8AI score0.02703EPSS
Exploits5References1
Prion
Prion
added 2018/02/22 7:29 p.m.21 views

Sql injection

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter...

7.5CVSS9.8AI score0.02703EPSS
Exploits5References1Affected Software1
Cvelist
Cvelist
added 2018/02/22 7:0 p.m.27 views

CVE-2018-7315

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter...

10AI score0.02703EPSS
Exploits5References1
CVE
CVE
added 2018/02/22 7:0 p.m.69 views

CVE-2018-7315

CVE-2018-7315 is a SQL injection vulnerability in Joomla! Ek Rishta 2.9 (and earlier) where an attacker can exploit parameters such as gender, age1, age2, religion, mothertounge, caste, or country to access or modify backend database. The issue affects the Ek Rishta component for Joomla and is do...

9.8CVSS9.8AI score0.02703EPSS
Exploits5References1Affected Software1
exploitpack
exploitpack
added 2018/02/22 12:0 a.m.51 views

Joomla! Component Ek Rishta 2.9 - SQL Injection

Joomla! Component Ek Rishta 2.9 - SQL Injection Exploit Title: Joomla! Component Ek Rishta 2.9 - SQL Injection Dork: N/A Date: 22.02.2018 Vendor Homepage: https://www.joomlaextensions.co.in/ Software Link: https://extensions.joomla.org/extensions/extension/living/dating-a-relationships/ek-rishta/...

7.5CVSS0.3AI score0.02703EPSS
Exploits5
0day.today
0day.today
added 2018/02/22 12:0 a.m.40 views

Joomla Ek Rishta 2.9 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component Ek Rishta 2.9 - SQL Injection Vendor Homepage: https://www.joomlaextensions.co.in/ Software Link: https://extensions.joomla.org/extensions/extension/living/dating-a-relationships/ek-rishta/ Version: 2.9 Categor...

9.2AI score0.02703EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/02/22 12:0 a.m.46 views

Joomla! Component Ek Rishta 2.9 - SQL Injection

Exploit Title: Joomla! Component Ek Rishta 2.9 - SQL Injection Dork: N/A Date: 22.02.2018 Vendor Homepage: https://www.joomlaextensions.co.in/ Software Link: https://extensions.joomla.org/extensions/extension/living/dating-a-relationships/ek-rishta/ Version: 2.9 Category: Webapps Tested on:...

9.8CVSS9.6AI score0.02703EPSS
Exploits5
Malwarebytes
Malwarebytes
added 2017/12/11 7:58 p.m.15 views

A week in security (December 04 – December 10)

Last week on the blog, we looked at a RIG EK malware campaign, explored how children are being tangled up in money mule antics, took a walk through the world of Blockchain, and gave a rundown of what's involved when securing web applications. We also laid out the trials and tribulations of the...

6.8AI score
Exploits0
Rows per page
Query Builder