CVE-2018-6370

SQL Injection exists in the NeoRecruit 4.1 component for Joomla! via the (1) PATH_INFO or (2) name of a .html file under the all-offers/ URI.
References
Link Resource
https://exploit-db.com/exploits/44123 Exploit Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:neojoomla:neorecruit:4.1:*:*:*:*:joomla\!:*:*

Information

Published : 2018-02-16 23:29

Updated : 2018-03-05 08:02


NVD link : CVE-2018-6370

Mitre link : CVE-2018-6370


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

neojoomla

  • neorecruit