WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-8917)

Description

SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

Related Vulnerabilities

Apache HTTP Server Other Vulnerability (CVE-1999-0926)

WordPress Plugin Modern Events Calendar Lite Arbitrary File Upload (7.11.0)

Drupal Core 9.3.x Remote Code Execution (9.3.0 - 9.3.18)

osTicket Other Vulnerability (CVE-2006-5407)

Apache Tomcat Credentials Management Errors Vulnerability (CVE-2009-3548)

Severity

Critical

Classification

CVE-2017-8917 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities