Описание
SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2.6.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:awebsupport:aweb_cart_watching_system_for_virtuemart:2.6.0:*:*:*:*:joomla\!:*:*
EPSS
Процентиль: 67%
0.00548
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2.6.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch.
EPSS
Процентиль: 67%
0.00548
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-89