CVE-2016-10114

Published January 4th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2.6.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch.

qemm/joomlasqli

Sqli Blind Timebased on Joomla + Viertuemart + aweb-cartwatching-system <=2.6.0

GitHub