SQL Injection Vulnerability in Harmis Ek Rishta Component for Joomla!

SQL Injection Vulnerability in Harmis Ek Rishta Component for Joomla!

CVE-2018-12254 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.