7.5
CVSSv2

CVE-2018-5982

Published: 17/02/2018 Updated: 01/03/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request.

Affected Products

Vendor Product Versions
OrdasoftAdvertisement Board3.1.0

Exploits

# # # # # Exploit Title: Joomla! Component Advertisement Board 310 - SQL Injection # Dork: N/A # Date: 16022018 # Vendor Homepage: ordasoftcom/ # Software Link: extensionsjoomlaorg/extensions/extension/ads-a-affiliates/classified-ads/advertisement-board/ # Version: 310 # Category: Webapps # Tested on: WiN7_x64/KaLiLinuX_x64 ...

Mailing Lists

Joomla! Advertisement Board component version 310 suffers from a remote SQL injection vulnerability ...