vendor:
Joomla Component File Download Tracker
by:
Ihsan Sencan
9.8
CVSS
CRITICAL
SQL Injection
89
CWE
Product Name: Joomla Component File Download Tracker
Affected Version From: 3.0
Affected Version To: 3.0
Patch Exists: YES
Related CWE: CVE-2018-6004
CPE: a:techsolsystem:joomla_component_file_download_tracker:3.0
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: WiN7_x64/KaLiLinuX_x64
2018
Joomla! Component File Download Tracker 3.0 – SQL Injection
Joomla! Component File Download Tracker 3.0 is vulnerable to SQL Injection. An attacker can exploit this vulnerability by sending a malicious SQL query to the vulnerable parameter 'dynfield[phone]' in the 'index.php' page or by sending a malicious SQL query to the vulnerable parameter 'sess' in the 'download' page. This can allow an attacker to gain access to the underlying database and execute arbitrary SQL commands.
Mitigation:
Developers should ensure that user-supplied input is properly sanitized and validated before being used in SQL queries. Additionally, developers should use parameterized queries to prevent SQL injection attacks.