Harmis Technology Ek rishta 2.10 for Joomla!
Approved changes feed: RSS · Atom
cpe:2.3:a:harmistechnology:ek_rishta:2.10:*:*:*:*:joomla\!:*:*
part: a version: 2.10 update: *
| Vendor | Harmistechnology (338a2b50-3242-5ba2-b318-c37e1d8f6f08) |
|---|---|
| Product | Ek Rishta (f80280d3-0596-5e0e-ba72-060b3f531f9e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | joomla! |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-25351 |
vulnerable | 2026-06-08 05:11:29.827907 |
Joomla! Component EkRishta 2.10 SQL Injection via username
HIGH (8.2)
Joomla! Component EkRishta 2.10 contains an error-based SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code into the username parameter. Attackers can submit POST requests to the login endpoint with SQL injection payloads in the username field to extract database information including user credentials and system details.
Published: 2026-05-23T18:30:51.894Z
Updated: 2026-05-26T13:31:02.485Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-25348 |
vulnerable | 2026-06-08 05:11:29.826653 |
Joomla! Component Ek Rishta 2.10 SQL Injection via user_detail
HIGH (8.2)
Joomla! Component Ek Rishta 2.10 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the cid parameter. Attackers can send GET requests to the user_detail view with malicious cid values containing SQL commands to extract sensitive database information.
Published: 2026-05-23T18:30:49.735Z
Updated: 2026-05-26T18:24:52.238Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-12254 |
vulnerable | 2026-06-08 05:10:41.325004 |
Details available
router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.
Published: 2018-06-12T17:00:00.000Z
Updated: 2024-08-05T08:30:59.594Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.