cbcvebase.
CVE-2018-5983
published 2018-02-17

CVE-2018-5983: SQL Injection exists in the JquickContact 1.3.2.2.1 component for Joomla! via a task=refresh&sid= request.

PriorityP265critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
2.70%
84.1th percentile
SQL Injection exists in the JquickContact 1.3.2.2.1 component for Joomla! via a task=refresh&sid= request.

Affected

1 ranges
VendorProductVersion rangeFixed in
jquickcontact_projectjquickcontact

Detection & IOCsextracted from sources · hover to see the quote

urlindex.php?option=com_jquickcontact&task=refresh&sid=[SQL]
  • Detect SQL injection attempts against the JquickContact Joomla component by monitoring HTTP requests containing the query parameters 'option=com_jquickcontact', 'task=refresh', and a non-empty or manipulated 'sid=' parameter.
  • Alert on URL-encoded SQL injection payloads (e.g., %20AND%20, EXTRACTVALUE, CONCAT, SELECT, ELT) appearing in the 'sid' parameter of requests to 'index.php?option=com_jquickcontact'.
  • ·The exploit was tested only on specific platforms; coverage may vary across other environments.
  • ·The vulnerability is confirmed only in version 1.3.2.2.1 of the JquickContact component; other versions are not referenced.

CVSS provenance

nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.