Joomla : Security Vulnerabilities, CVEs, Published In 2015 (Sql injection)
SQL injection vulnerability in the EQ Event Calendar component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to eqfullevent.
Max CVSS
7.5
EPSS Score
0.16%
Published
2015-06-18
Updated
2016-12-07
CVE-2015-7297
Public exploit
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7858.
Max CVSS
7.5
EPSS Score
97.55%
Published
2015-10-29
Updated
2017-09-13
CVE-2015-7857
Public exploit
SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL commands via the list[select] parameter to index.php.
Max CVSS
7.5
EPSS Score
81.42%
Published
2015-10-29
Updated
2017-09-13
CVE-2015-7858
Public exploit
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297.
Max CVSS
7.5
EPSS Score
81.42%
Published
2015-10-29
Updated
2017-09-13
4 vulnerabilities found