CVE-2018-7315

Name of the Vulnerable Software and Affected Versions Ek Rishta version 2.9

Description The issue exists due to SQL Injection in the Ek Rishta component for Joomla. This can be exploited via the gender, age1, age2, religion, mothertounge, caste, or country parameter.

Recommendations For Ek Rishta version 2.9, consider restricting access to the vulnerable parameters until a patch is available. As a temporary workaround, avoid using the parameters gender, age1, age2, religion, mothertounge, caste, or country in the affected component. At the moment, there is no information about a newer version that contains a fix for this issue.