virus logo Intrusion Prevention

Joomla!.Component.AllVideos.Reloaded.SQL.Injection

description-logoDescription

This indicates an attack attempt to exploit a SQL Injection vulnerability in Joomla! Component AllVideos Reloaded.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when handling a craft HTTP request. A remote attacker may be able exploit this this to send a crafted query to execute SQL commands within the context of the application.

affected-products-logoAffected Products

Joomla! Component AllVideos Reloaded version 1.2 to version 1.2.7

Impact logoImpact

System Compromise: Remote attackers can access or modify data in the database of the affected application

recomended-action-logoRecommended Actions

Apply latest patch or upgrade to the latest version from the vendor.
http://joomlacode.org/gf/project/allvideos15/frs/?action=FrsReleaseBrowse&frs_package_id=3564

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-11-22 15.729 Name:Joomla.
Component.
AllVideos.
Reloaded.
SQL.
Injection:Joomla!.
Component.
AllVideos.
Reloaded.
SQL.
Injection
2019-09-27 14.696 Default_action:pass:drop
2019-09-18 14.690

References

44107
ID 48363
Created Sep 18, 2019
Updated Jul 24, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2018-5990
Exploit Prediction Score 0.28%
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App PHP_app