CVE-2018-7315

CRITICAL

Harmistechnology EK Rishta - SQL Injection

Title source: rule

Description

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter.

Exploits (1)

exploitdb WORKING POC
by Ihsan Sencan · textwebappsphp
https://www.exploit-db.com/exploits/44161

References (1)

Scores

CVSS v3 9.8
EPSS 0.0141
EPSS Percentile 80.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Products (1)
harmistechnology/ek_rishta 2.9
Published Feb 22, 2018
Tracked Since Feb 18, 2026