Description

Joomla! CMS versions 3.1.0 through 3.2.2 are vulnerable to an SQL injection vulnerability if the default data is selected during installation.

Remediation

Upgrade to the latest version of Joomla!.

References

[20140301] - Core - SQL Injection

Related Vulnerabilities

WordPress Plugin Note Press SQL Injection (0.1.1)

WordPress Plugin GiveWP-Donation and Fundraising Platform SQL Injection (2.5.0)

WordPress Plugin All Video Gallery SQL Injection (1.2)

WordPress Plugin WP-Stats-Dashboard SQL Injection (2.9.4)

WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease SQL Injection (4.6.1)

Severity

High

Classification

CWE-89 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Tags

SQL Injection