qemm/joomlasqli

Releases0

Sqli Blind Timebased on Joomla + Viertuemart + aweb-cartwatching-system <=2.6.0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2016-10114 ↗	Jan 4, 2017Wednesday, 4 January 2017, 02:59	—	7.5 HIGH
SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2.6.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch.