Joomla! 'com_recipe' Component SQL Injection Vulnerabilities

vendor:

com_recipe

by:

Unknown

7.5

CVSS

HIGH

SQL Injection

Unknown

CWE

Product Name: com_recipe

Affected Version From: Unknown

Affected Version To: Unknown

Patch Exists: No

Related CWE: CVE-Unknown

CPE: Unknown

Metasploit:

Other Scripts:

Platforms Tested: Unknown

Unknown

Joomla! ‘com_recipe’ Component SQL Injection Vulnerabilities

The 'com_recipe' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Mitigation:

Unknown

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/38336/info

The 'com_recipe' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. 


http://www.example.com/index.php?option=com_recipe&view=recipe&layout=defaults&rec=73[EXPLOIT1]
http://www.example.com/index.php?option=com_recipe&task=type&Itemid=16&type=4&category=2[EXPLOIT2]
http://www.example.com/index.php?option=com_recipe&task=view&Itemid=16&id=4[EXPLOIT3]