Security News > 2017 > May > Joomla users: Update immediately to kill severe SQLi vulnerability (Help Net Security)

Joomla users: Update immediately to kill severe SQLi vulnerability (Help Net Security)
2017-05-18 16:11

Version 3.7 of Joomla, pushed out less than a month ago, opens websites to SQL injection attacks, Sucury Security researchers have found. As explained by researcher Marc-Alexandre Montpas: “The vulnerability is caused by a new component, com_fields, which was introduced in version 3.7. This vulnerable component is publicly accessible, which means this issue can be exploited by any malicious individual visiting your site.” Sucuri has published technical details about the vulnerability on Wednesday, in the … More →


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/OrjsCWOLUOk/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Joomla 129 12 388 460 16 876