CVE-2016-15016

Source
https://nvd.nist.gov/vuln/detail/CVE-2016-15016
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-15016.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-15016
Published
2023-01-08T18:15:10Z
Modified
2025-01-08T09:59:03.282644Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability was found in mrtnmtth joomlamodeinsatz_stats up to 0.2. It has been classified as critical. This affects the function getStatsByType of the file helper.php. The manipulation of the argument year leads to sql injection. Upgrading to version 0.3 is able to address this issue. The identifier of the patch is 27c1b443cff45c81d9d7d926a74c76f8b6ffc6cb. It is recommended to upgrade the affected component. The identifier VDB-217653 was assigned to this vulnerability.

References

Affected packages

Git / github.com/mrtnmtth/joomla_mod_einsatz_stats

Affected ranges

Type
GIT
Repo
https://github.com/mrtnmtth/joomla_mod_einsatz_stats
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Fixed

Affected versions

v0.*

v0.1
v0.2