virus logo Intrusion Prevention

Joomla!.Component.Social.Factory.SQL.Injection

description-logoDescription

This indicates an attack attempt to exploit a SQL Injection vulnerability in Joomla! Component Social Factory.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when handling a craft HTTP request. A remote attacker may be able exploit this to execute arbitrary code within the context of the application.

affected-products-logoAffected Products

Joomla! Component Social Factory 3.8.3
ThePHPFactory Social Factory 3.8.3

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply latest patch or upgrade to the latest version from the vendor.
https://extensions.joomla.org/extensions/extension/clients-a-communities/communities/social-factory/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-11-22 15.729 Name:Joomla.
Component.
Social.
Factory.
SQL.
Injection:Joomla!.
Component.
Social.
Factory.
SQL.
Injection
2019-08-22 14.675 Default_action:pass:drop
2019-08-13 14.668

References

45470
ID 48256
Created Aug 13, 2019
Updated May 02, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2018-17385
Exploit Prediction Score 0.29%
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App PHP_app