CyberSec.Space Logo
Back to CVE Browser

CVE-2018-17381

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1380%
EPSS Percentile41.92th
PublishedJun 19, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

SQL Injection exists in the Dutch Auction Factory 2.0.2 component for Joomla! via the filter_order_Dir or filter_order parameter.

Affected Platforms (CPE)

πŸ“¦
Thephpfactory

Dutch Auction Factory

= 2.0.2

References & Advisories

πŸ”— https://www.exploit-db.com/author/?a=8844
πŸ”— https://www.exploit-db.com/exploits/45462
πŸ”— https://www.exploit-db.com/author/?a=8844
πŸ”— https://www.exploit-db.com/exploits/45462

Related Vulnerabilities

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...