CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-7857

SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL commands via the list[select] parameter to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.855

EPSS Ranking 99.3%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2015-7857

Joomla » Joomla! » Version: 3.2.0

cpe:2.3:a:joomla:joomla!:3.2.0
Joomla » Joomla! » Version: 3.2.1

cpe:2.3:a:joomla:joomla!:3.2.1
Joomla » Joomla! » Version: 3.2.2

cpe:2.3:a:joomla:joomla!:3.2.2
Joomla » Joomla! » Version: 3.2.3

cpe:2.3:a:joomla:joomla!:3.2.3
Joomla » Joomla! » Version: 3.2.4

cpe:2.3:a:joomla:joomla!:3.2.4
Joomla » Joomla! » Version: 3.3.0

cpe:2.3:a:joomla:joomla!:3.3.0
Joomla » Joomla! » Version: 3.3.1

cpe:2.3:a:joomla:joomla!:3.3.1
Joomla » Joomla! » Version: 3.3.2

cpe:2.3:a:joomla:joomla!:3.3.2
Joomla » Joomla! » Version: 3.3.3

cpe:2.3:a:joomla:joomla!:3.3.3
Joomla » Joomla! » Version: 3.3.4

cpe:2.3:a:joomla:joomla!:3.3.4
Joomla » Joomla! » Version: 3.4.0

cpe:2.3:a:joomla:joomla!:3.4.0
Joomla » Joomla! » Version: 3.4.1

cpe:2.3:a:joomla:joomla!:3.4.1
Joomla » Joomla! » Version: 3.4.2

cpe:2.3:a:joomla:joomla!:3.4.2
Joomla » Joomla! » Version: 3.4.3

cpe:2.3:a:joomla:joomla!:3.4.3
Joomla » Joomla! » Version: 3.4.4

cpe:2.3:a:joomla:joomla!:3.4.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-7857

Products

Pricing

Contact Us