Security News > 2015 > October > Joomla Update Patches Critical SQL Injection Vulnerability (Threatpost)

Joomla Update Patches Critical SQL Injection Vulnerability (Threatpost)

2015-10-23 12:56

Joomla released a new version of its CMS Thursday, 3,4,5, that addresses a critical SQL injection vulnerability that could have let attackers gain access to data in the backend of any site running the platform.

News URL

http://threatpost.com/joomla-update-patches-critical-sql-injection-vulnerability/115142/

#critical #joomla #SQL #threatpost #vulnerability

Related news

Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution (source)
Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches (source)
Critical PHP RCE vulnerability mass exploited in new attacks (source)
New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking (source)
IBM scores perfect 10 ... vulnerability in mission-critical OS AIX (source)
Critical Veeam Backup & Replication RCE vulnerability fixed, patch ASAP! (CVE-2025-23120) (source)
Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist (source)
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks (source)
Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927) (source)
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Joomla		1	1	102	43	27	173

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.