Critical severity9.8OSV Advisory· Published Jan 30, 2018· Updated Jun 17, 2026
CVE-2018-6376
CVE-2018-6376
Description
In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/102916nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040316nvdThird Party AdvisoryVDB Entry
- developer.joomla.org/security-centre/722-20180105-core-sqli-vulnerability.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.