PT-2019-9463 · Joomla · Amgallery

Published

2019-06-19

Updated

2019-06-20

CVE-2018-17398

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Joomla! AMGallery component version 1.2.3

Description A SQL Injection issue exists in the AMGallery component for Joomla! via the filter category id parameter.

Recommendations For version 1.2.3, avoid using the filter category id parameter in the affected component until the issue is resolved.

Exploit

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2018-17398

Amgallery