header-logo
Suggest Exploit
vendor:
CW Article Attachments
by:
Haboob Team
9.8
CVSS
CRITICAL
SQL Injection
89
CWE
Product Name: CW Article Attachments
Affected Version From: below < 1.0.6
Affected Version To: 2.0.7
Patch Exists: YES
Related CWE: CVE-2018-14592
CPE: 2.3:a:joomla:cw_article_attachments_pro
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: None
2018

Joomla! CW Article Attachments 1.0.6 – ‘id’ SQL Injection

The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php.

Mitigation:

Upgrade to CW Article Attachments PRO version 2.0.7 or CW Article Attachments FREE version 1.0.6 or later.
Source

Exploit-DB raw data:

# Exploit Title: Joomla! CW Article Attachments 1.0.6 - 'id' SQL Injection
# Date: 2018-09-20
# Exploit Author: Haboob Team
# Software Link: https://extensions.joomla.org/extension/cw-article-attachments/
# Version: below < 1.0.6
# CVE : CVE-2018-14592 
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14592

# 1. Description
# The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments 
# FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php.
 
# 2. Proof of Concept
 
http://IP-ADDRESS/plugins/content/cwattachments/cwattachments/helpers/download.php?id=INJECTION&sid=0123456789987654321

Navigation

Suggest Exploit

Services By CQR