Security News > 2015 > October > Joomla Update Patches Critical SQL Injection Vulnerability (Threatpost)

Joomla Update Patches Critical SQL Injection Vulnerability (Threatpost)

2015-10-23 12:56

Joomla released a new version of its CMS Thursday, 3,4,5, that addresses a critical SQL injection vulnerability that could have let attackers gain access to data in the backend of any site running the platform.

News URL

http://threatpost.com/joomla-update-patches-critical-sql-injection-vulnerability/115142/

#critical #joomla #SQL #threatpost #vulnerability

Related news

CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks (source)
Microsoft Patches Critical Copilot Studio Vulnerability Exposing Sensitive Data (source)
SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access (source)
Critical Fortra FileCatalyst Workflow vulnerability patched (CVE-2024-6633) (source)
Apache fixes critical OFBiz remote code execution vulnerability (source)
Apache OFBiz team patches critical RCE vulnerability (CVE-2024-45195) (source)
GitLab warns of critical pipeline execution vulnerability (source)
SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks (source)
Critical Ivanti Cloud Appliance Vulnerability Exploited in Active Cyberattacks (source)
CISA Flags Critical Ivanti vTM Vulnerability Amid Active Exploitation Concerns (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Joomla		129	12	388	460	16	876

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.