CyberSec.Space Logo
CVEブラウザに戻る

CVE-2016-10114

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0370%
EPSS Percentile31.35th
Published2017年1月4日
Last Modified2026年5月6日

Vulnerability Description

SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2.6.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch.

Affected Platforms (CPE)

📦
Awebsupport

Aweb Cart Watching System For Virtuemart

= 2.6.0

References & Advisories

🔗 http://www.securityfocus.com/bid/95293
🔗 https://github.com/qemm/joomlasqli
🔗 https://vel.joomla.org/resolved/1897-aweb-cart-watching-system-2-6-0
🔗 https://www.exploit-db.com/exploits/40973/
🔗 http://www.securityfocus.com/bid/95293
🔗 https://github.com/qemm/joomlasqli
🔗 https://vel.joomla.org/resolved/1897-aweb-cart-watching-system-2-6-0
🔗 https://www.exploit-db.com/exploits/40973/

関連する脆弱性情報

CVE-2026-48777

FileBrowser Quantum is a free, self-hosted, web-based file manager. Versions prior to 1.3.2-stable, 1.4.0-beta and 1.4.1-beta are ...

CVE-2026-477507.8

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and mo...

CVE-2026-477477.8

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and mo...

CVE-2026-464485.4

In OpenStack Nova before 33.0.2, the server create API does not strip certain hint data. The resulting instance has no Placement a...