Lucene search
K

7 matches found

NVD
NVD
added 2026/06/19 5:16 p.m.12 views

CVE-2017-20281

Joomla! Component Extra Search 2.2.8 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the establename parameter. Attackers can send GET requests to index.php with the option=comextrasearch parameter and...

8.8CVSS0.00267EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/19 4:54 p.m.30 views

CVE-2017-20281 Joomla! Component Extra Search 2.2.8 SQL Injection

Joomla! Component Extra Search 2.2.8 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the establename parameter. Attackers can send GET requests to index.php with the option=comextrasearch parameter and...

8.8CVSS0.00267EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/19 4:54 p.m.5 views

EUVD-2017-19008

Joomla! Component Extra Search 2.2.8 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the establename parameter. Attackers can send GET requests to index.php with the option=comextrasearch parameter and...

8.8CVSS6AI score0.00267EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/19 4:54 p.m.6 views

CVE-2017-20281

Joomla! Component Extra Search 2.2.8 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the establename parameter. Attackers can send GET requests to index.php with the option=comextrasearch parameter and...

8.8CVSS6AI score0.00267EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/06/19 4:54 p.m.11 views

CVE-2017-20281

Joomla! Component Extra Search 2.2.8 contains an SQL injection vulnerability in the establename parameter (index.php?option=com_extrasearch). The issue allows unauthenticated attackers to manipulate database queries and extract sensitive information. Evidence in CVE records and AttackerKB confirm...

8.8CVSS6AI score0.00267EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.13 views

PT-2026-50962

Name of the Vulnerable Software and Affected Versions Joomla! Component Extra Search version 2.2.8 Description An SQL injection allows unauthenticated attackers to manipulate database queries by injecting SQL code. This is achieved by sending GET requests to the 'index.php' endpoint using the...

8.8CVSS5.9AI score0.00267EPSS
Exploits0References7
exploitpack
exploitpack
added 2017/03/21 12:0 a.m.14 views

Joomla! Component Extra Search 2.2.8 - establename SQL Injection

Joomla! Component Extra Search 2.2.8 - establename SQL Injection Exploit Title: Joomla! Component Extra Search v2.2.8 - SQL Injection Google Dork: N/A Date: 21.03.2017 Vendor Homepage: http://www.joomlaboat.com/ Software: http://www.joomlaboat.com/extra-search Demo: http://www.joomlaboat.com/...

0.1AI score
Exploits0
Rows per page
Query Builder