Smart Related Articles
by Smart Related Articles Project
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-7628 | Cri | 0.64 | 9.8 | 0.01 | Apr 13, 2017 | The "Smart related articles" extension 1.1 for Joomla! has SQL injection in dialog.php (attacker must use search_cats variable in POST method to exploit this vulnerability). | ||
| CVE-2017-7626 | Med | 0.40 | 6.1 | 0.01 | Apr 13, 2017 | The "Smart related articles" extension 1.1 for Joomla! has XSS in dialog.php (n_art,type in GET Method). | ||
| CVE-2017-7627 | Med | 0.35 | 5.3 | 0.01 | Apr 13, 2017 | The "Smart related articles" extension 1.1 for Joomla! does not prevent direct requests to dialog.php (there is a missing _JEXEC check). |
- risk 0.64cvss 9.8epss 0.01
The "Smart related articles" extension 1.1 for Joomla! has SQL injection in dialog.php (attacker must use search_cats variable in POST method to exploit this vulnerability).
- risk 0.40cvss 6.1epss 0.01
The "Smart related articles" extension 1.1 for Joomla! has XSS in dialog.php (n_art,type in GET Method).
- risk 0.35cvss 5.3epss 0.01
The "Smart related articles" extension 1.1 for Joomla! does not prevent direct requests to dialog.php (there is a missing _JEXEC check).