SQL injection in Joomla! - CVE-2017-8917
Published: May 17, 2017 / Updated: June 7, 2024
Vulnerability identifier: #VU6595
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:A/U:Amber
CVE-ID: CVE-2017-8917
CWE-ID: CWE-89
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vendor: Joomla!
Affected software:
Joomla!
Joomla!
Detailed vulnerability description
The vulnerability allows a remote attacker to execute arbitrary SQL commands in web application database.
The vulnerability exists due to insufficient sanitization of user-supplied data within "com_fields" component. A remote attacker can send a specially crafted HTTP request to vulnerable script and execute arbitrary SQL commands in web application database.
Successful exploitation of the vulnerability may allow an attacker to gain administrative access to vulnerable web application.
Exploitation example:
http://[host]/index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml[SQL]
How to mitigate CVE-2017-8917
Update to version 3.7.1.