CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-2798

SQL injection vulnerability in Joomla! Component Contact Form Maker 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.033

EPSS Ranking 86.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/73903
https://www.exploit-db.com/exploits/36561/
http://www.securityfocus.com/bid/73903
https://www.exploit-db.com/exploits/36561/

Products affected by CVE-2015-2798

Web-Dorado » Contact Form Maker » Version: 1.0.1

cpe:2.3:a:web-dorado:contact_form_maker:1.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-2798

Products

Pricing

Contact Us