Exploitation Summary
EIP tracks 1 public exploit for CVE-2015-7714. PoCs published by Bikramaditya Guha.
AI-analyzed exploit summary This exploit demonstrates multiple SQL injection vulnerabilities in Realtyna RPL 8.9.2 Joomla extension. It provides specific POST parameters and payloads to manipulate SQL queries by injecting arbitrary SQL code.
Description
Multiple SQL injection vulnerabilities in the Realtyna RPL (com_rpl) component before 8.9.5 for Joomla! allow remote administrators to execute arbitrary SQL commands via the (1) id, (2) copy_field in a data_copy action, (3) pshow in an update_field action, (4) css, (5) tip, (6) cat_id, (7) text_search, (8) plisting, or (9) pwizard parameter to administrator/index.php.
Exploits (1)
This exploit demonstrates multiple SQL injection vulnerabilities in Realtyna RPL 8.9.2 Joomla extension. It provides specific POST parameters and payloads to manipulate SQL queries by injecting arbitrary SQL code.
References (4)
Scores
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H