vendor:
Bazaar
by:
Ihsan Sencan
8,8
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Bazaar
Affected Version From: 3.0
Affected Version To: 3.0
Patch Exists: NO
Related CWE: N/A
CPE: a:matamko:bazaar:3.0
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Win7 x64, Kali Linux x64
2017
Joomla! Component Bazaar Platform v3.0 – SQL Injection
A SQL injection vulnerability exists in Joomla! Component Bazaar Platform v3.0. An attacker can send malicious SQL queries to the application, which can be used to extract sensitive information from the database, modify data, or execute arbitrary system commands.
Mitigation:
Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.
