CVE-2016-10114

CVE-2016-10114

EPSS 1.6%

SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2.6.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/qemm/joomlasqli https://vel.joomla.org/resolved/1897-aweb-cart-watching-system-2-6-0 https://www.exploit-db.com/exploits/40973/http://www.securityfocus.com/bid/95293