Analecta Cyber Company Blog: Joomla 3.4.5 patches Critical SQL Injection Vulnerability

2015-11-28

Joomla 3.4.5 patches Critical SQL Injection Vulnerability

A content management system, or CMS, is a computer application that allows publishing, modifying, organizing, deleting and even maintenance of online content from a central interface.

Joomla is one of the most popular open source CMS software packages. It was recently reported that three critical vulnerabilities in its software have been patched.



Two researchers, one from Trustwave SpiderLabs and another from PerimeterX, discovered the vulnerabilities which could allow attacks to a website through SQL injections. An SQL injection (SQLi) is an attack where someone inserts malicious SQL commands through the input data from the client to the application. This includes the following:

  • CVE-2015-7297
  • CVE-2015-7857
  • CVE-2015-7858
  • CVE-2015-7857

It’s believed that the flaw could allow hackers to attack the majority of Joomla users’ websites. It enables an unauthorized remote attacker to gain administrator privileges by hijacking the admin session and gaining full control of the website, allowing even more attacks.

The weaknesses in the software exists in versions 3.2 to 3.4.4, which were released starting in November 2013. Though this type of vulnerability is one of the oldest, it is one of the most powerful and most dangerous flaws that could affect any SQL-based website or web application.

Patches which only contained security fixes served as an upgrade to version 3.4.5 of Joomla.

Another popular CMS called Drupal has also implemented a patch on Open Redirect vulnerability in the Overlay module in its Core project (7.x versions prior to 7.41). This displays administrative pages as a layer on the current page, rather than replacing the page in the browser window.

According to the official blog of Drupal, the module doesn't sufficiently validate URLs prior to displaying their content. This leads to an open redirect vulnerability affecting site users with administrative rights.

An upgraded version called the Drupal version 7.41 was released and served as the fix for this vulnerability. Therefore sites needed to immediately patch their CMS in order to be safe and protected.