vendor:
JSupport
by:
Valentin Hoebel
N/A
CVSS
N/A
SQL Injection
89
CWE
Product Name: JSupport
Affected Version From: 1.5.6
Affected Version To: 1.5.6
Patch Exists: Unknown
Related CWE: Unknown
CPE: a:extension_depot:jsupport
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: None
2010
Joomla Component com_jsupport SQL Injection Vulnerability
This vulnerability can be found by viewing the component in the Joomla administrator backend. Examples: administrator/index.php?option=com_jsupport&task=listTicketsα=[SQL Injection] administrator/index.php?option=com_jsupport&task=listFaqsα=[SQL Injection]
Mitigation:
Input validation and sanitization should be used to prevent SQL injection attacks.
