Description

SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7858.

Remediation

References

CVE-2015-7297

Related Vulnerabilities

ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9454)

WordPress Plugin AccessPress Social Share includes Backdoor [Only if downloaded via the vendor website] (4.5.5)

WordPress Plugin Gravity Forms SQL Injection (1.9.3.5)

LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-16177)

Envoy Proxy Out-of-bounds Write Vulnerability (CVE-2019-18801)

Severity

High

Classification

CVE-2015-7297 CWE-138

Tags

Missing Update Known Vulnerabilities