SQL Injection exists in the Micro Deal Factory 2.4.0 component for Joomla! via the id parameter, or the PATH_INFO to mydeals/ or listdeals/.
References
Link | Resource |
---|---|
https://www.exploit-db.com/author/?a=8844 | Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/45452 | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-06-19T17:10:10
Updated: 2019-06-19T17:10:10
Reserved: 2018-09-23T00:00:00
Link: CVE-2018-17386
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-06-19T18:15:11.167
Modified: 2019-06-21T18:26:30.317
Link: CVE-2018-17386
JSON object: View
Redhat Information
No data.
CWE