CVE-2018-12254

router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.
References
Link Resource
https://m4k4br0.github.io/sql-injection-joomla-component/ Exploit Third Party Advisory
https://www.exploit-db.com/exploits/44893/ Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:harmistechnology:ek_rishta:2.10:*:*:*:*:joomla!:*:*

Information

Published : 2018-06-12 05:29

Updated : 2018-08-02 02:15


NVD link : CVE-2018-12254

Mitre link : CVE-2018-12254

Products Affected
No products.
CWE