Security News > 2015 > October > Joomla Update Patches Critical SQL Injection Vulnerability (Threatpost)

Joomla Update Patches Critical SQL Injection Vulnerability (Threatpost)

2015-10-23 12:56

Joomla released a new version of its CMS Thursday, 3,4,5, that addresses a critical SQL injection vulnerability that could have let attackers gain access to data in the backend of any site running the platform.

News URL

http://threatpost.com/joomla-update-patches-critical-sql-injection-vulnerability/115142/

#critical #joomla #SQL #threatpost #vulnerability

Related news

New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking (source)
IBM scores perfect 10 ... vulnerability in mission-critical OS AIX (source)
Critical Veeam Backup & Replication RCE vulnerability fixed, patch ASAP! (CVE-2025-23120) (source)
Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist (source)
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks (source)
Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927) (source)
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)
CrushFTP: Patch critical vulnerability ASAP! (CVE-2025-2825) (source)
Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Joomla		1	1	102	43	27	173

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.