[20170501] - Core - SQL Injection
- Details
- Joomla RSS Sicherheit
- Kategorie: Joomla News
Project: Joomla!
SubProject: CMS
Severity: High
Versions: 3.7.0
Exploit type: SQL Injection
Reported Date: 2017-May-11
Fixed Date: 2017-May-17
CVE Number: CVE-2017-8917
Description
Inadequate filtering of request data leads to a SQL Injection vulnerability.
Affected Installs
Joomla! CMS versions 3.7.0
Solution
Upgrade to version 3.7.1
Contact
The JSST at the Joomla! Security Centre.
Reported By: Marc-Alexandre Montpas / sucuri.net
- Zugriffe: 1844