Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-8769)

Description

SQL injection vulnerability in Joomla! 3.x before 3.4.7 allows attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

Related Vulnerabilities

Oracle JRE CVE-2022-21541 Vulnerability (CVE-2022-21541)

WordPress Plugin Image Photo Gallery Final Tiles Grid Cross-Site Scripting (3.4.18)

Drupal Core 8.9.0 Security Bypass (8.9.0)

WordPress Plugin Wunderbar Basic Cross-Site Scripting (1.1.3)

WordPress Plugin AnyMind Widget Cross-Site Request Forgery (1.1)

Severity

High

Classification

CVE-2015-8769 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities