CVE-2018-6373
Public Exploits 1
ExploitDB · 1 EDB-44109 [webapps]
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-6373
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view=player action.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Joomla! Fastball SQL注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Joomla!是美国Open Source Matters团队开发的一套开源的内容管理系统(CMS),该系统提供RSS馈送、网站搜索等功能。Fastball是使用在其中的一个棒球团队管理系统组件。 Joomla! Fastball 2.5版本中存在SQL注入漏洞。远程攻击者可借助view=player操作中的‘season’参数利用该漏洞查看、添加、更改或删除后端数据库的信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2018-6373
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-6373
请登录查看更多情报信息。
Same Patch Batch · n/a · 2018-02-17 · 31 CVEs total
| CVE-2018-6004 | Joomla! File Download Tracker SQL注入漏洞 | |
| CVE-2018-7180 | Joomla! Saxum Astro SQL注入漏洞 | |
| CVE-2018-7179 | Joomla! SquadManagement SQL注入漏洞 | |
| CVE-2018-7178 | Joomla! Saxum Picker SQL注入漏洞 | |
| CVE-2018-7177 | Joomla! Saxum Numerology SQL注入漏洞 | |
| CVE-2018-6585 | Joomla! Jticketing SQL注入漏洞 | |
| CVE-2018-6584 | Joomla! DT Register SQL注入漏洞 | |
| CVE-2018-6583 | Joomla! Timetable Responsive Schedule SQL注入漏洞 | |
| CVE-2018-6396 | Joomla! Google Map Landkarten SQL注入漏洞 | |
| CVE-2018-6394 | Joomla! InviteX SQL注入漏洞 | |
| CVE-2018-6372 | Joomla! JB Bus SQL注入漏洞 | |
| CVE-2018-6370 | Joomla! NeoRecruit SQL注入漏洞 | |
| CVE-2018-6368 | Joomla! JomEstate PRO SQL注入漏洞 | |
| CVE-2018-6006 | Joomla! JS Autoz SQL注入漏洞 | |
| CVE-2018-6005 | Joomla! Realpin SQL注入漏洞 | |
| CVE-2018-5970 | Joomla! Jgive组件SQL注入漏洞 | |
| CVE-2018-5994 | Joomla! JS Jobs SQL注入漏洞 | |
| CVE-2018-5993 | Joomla! Aistv SQL注入漏洞 | |
| CVE-2018-5992 | Joomla! Staff Master SQL注入漏洞 | |
| CVE-2018-5991 | Joomla! Form Maker SQL注入漏洞 |
Showing top 20 of 31 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2018-6373
No comments yet