Vulnerabilities > Smart Related Articles Project

DATE CVE VULNERABILITY TITLE RISK
2017-04-13 CVE-2017-7628 SQL Injection vulnerability in Smart Related Articles Project Smart Related Articles 1.1
The "Smart related articles" extension 1.1 for Joomla! has SQL injection in dialog.php (attacker must use search_cats variable in POST method to exploit this vulnerability).
network
low complexity
smart-related-articles-project CWE-89
critical
 9.8
9.8
2017-04-13 CVE-2017-7627 Unspecified vulnerability in Smart Related Articles Project Smart Related Articles 1.1
The "Smart related articles" extension 1.1 for Joomla! does not prevent direct requests to dialog.php (there is a missing _JEXEC check).
network
low complexity
smart-related-articles-project
5.3
5.3
2017-04-13 CVE-2017-7626 Cross-site Scripting vulnerability in Smart Related Articles Project Smart Related Articles 1.1
The "Smart related articles" extension 1.1 for Joomla! has XSS in dialog.php (n_art,type in GET Method).
network
low complexity
smart-related-articles-project CWE-79
6.1
6.1