CVE-2015-7297

EPSS 100.0%

Vexday Risk Score

60Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 100.0%KEV nãoPoC públicaNuclei simMetasploit simPatch —

Lifecycle

22 Oct 2015Metasploit module available

29 Oct 2015Published on NVD

02 Nov 2015Public PoC

Recommendation: Plan a near-term fix — a public PoC already exists.

SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7858.

Affected products

n/a · n/a

public PoCs found — 7

githubgithub.com/CCrashBandicot/ContentHistory★ 1 githubgithub.com/Cappricio-Securities/CVE-2015-7297★ 1 githubgithub.com/areaventuno/exploit-joomla★ 0 cve_referencewww.exploit-db.com/exploits/38797/unverified cve_referencepacketstormsecurity.com/files/134097/Joomla-3.44-SQL-Injection.htmlunverified exploitdbwww.exploit-db.com/exploits/38797unverified cve_referencepacketstormsecurity.com/files/134494/Joomla-Content-History-SQL-Injection-Remote-Code-Execution.htmlunverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://developer.joomla.org/security-centre/628-20151001-core-sql-injection.html http://packetstormsecurity.com/files/134097/Joomla-3.44-SQL-Injection.html http://packetstormsecurity.com/files/134494/Joomla-Content-History-SQL-Injection-Remote-Code-Execution.html https://www.exploit-db.com/exploits/38797/https://www.trustwave.com/Resources/SpiderLabs-Blog/Joomla-SQL-Injection-Vulnerability-Exploit-Results-in-Full-Administrative-Access/http://www.rapid7.com/db/modules/auxiliary/gather/joomla_contenthistory_sqli http://www.rapid7.com/db/modules/exploit/unix/webapp/joomla_contenthistory_sqli_rce http://www.securityfocus.com/bid/77295 http://www.securitytracker.com/id/1033950