CNNVD-202508-1850 Information

CNNVD ID

CNNVD-202508-1850

Related CVE

CVE-2025-54475

• CNNVD Published: 2025-08-15

Description (Chinese)

Joomla!是Joomla!开源的一个自由、开放源代码的内容管理系统。 Joomla! 1.3.2版本至1.4.4版本存在SQL注入漏洞，该漏洞源于低权限用户可执行任意SQL命令，可能导致SQL注入攻击。

Description (English)

Joomla! A free, open-source content management system for Joomla! Joomla! Versions 1.3.2 to 1.4.4 contain an injection loophole in SQL, which stems from the fact that low-authority users can enforce arbitrary SQL orders, which could lead to an SQL injection attack.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Joomla!

Published

2025-08-15

Last Modified

2026-02-24

References

https://github.com/AdamWallwork/CVEs/tree/main/2025/CVE-2025-54475 https://joomsky.com/js-jobs-joomla/ https://access.redhat.com/security/cve/cve-2025-54475 https://nvd.nist.gov/vuln/detail/CVE-2025-54475