{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/products/ek-rishta-2.10/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":8.2,"id":"CVE-2018-25348"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["Ek Rishta 2.10"],"_cs_severities":["high"],"_cs_tags":["sql-injection","joomla","vulnerability"],"_cs_type":"advisory","_cs_vendors":["Joomla!"],"content_html":"\u003cp\u003eJoomla! Component Ek Rishta 2.10 is susceptible to an SQL injection vulnerability that enables unauthenticated attackers to execute arbitrary SQL commands. This flaw allows attackers to manipulate database queries by injecting SQL code through the \u003ccode\u003ecid\u003c/code\u003e parameter in GET requests to the \u003ccode\u003euser_detail\u003c/code\u003e view. Successful exploitation could lead to unauthorized access to sensitive database information. The vulnerability was reported in the Ek Rishta component, a Joomla! extension. Attackers can leverage this vulnerability without authentication, making it a critical risk for systems running the affected component.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eAn unauthenticated attacker identifies a Joomla! website using Ek Rishta 2.10.\u003c/li\u003e\n\u003cli\u003eThe attacker crafts a malicious GET request targeting the \u003ccode\u003euser_detail\u003c/code\u003e view.\u003c/li\u003e\n\u003cli\u003eThe attacker injects SQL code into the \u003ccode\u003ecid\u003c/code\u003e parameter of the GET request.\u003c/li\u003e\n\u003cli\u003eThe Joomla! application processes the crafted request without proper sanitization of the \u003ccode\u003ecid\u003c/code\u003e parameter.\u003c/li\u003e\n\u003cli\u003eThe injected SQL code is executed against the database.\u003c/li\u003e\n\u003cli\u003eThe attacker retrieves sensitive database information, such as user credentials or configuration details.\u003c/li\u003e\n\u003cli\u003eThe attacker may further compromise the system by using the extracted credentials or exploiting other vulnerabilities.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of this vulnerability can lead to the disclosure of sensitive information stored in the database, potentially including user credentials, personal data, and other confidential information. This can result in identity theft, financial fraud, and reputational damage to the affected organization. Given the unauthenticated nature of the vulnerability, any Joomla! website using the vulnerable component is at risk.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApply the patch or upgrade to a non-vulnerable version of Ek Rishta to remediate CVE-2018-25348.\u003c/li\u003e\n\u003cli\u003eDeploy the Sigma rule provided in this brief to detect exploitation attempts targeting the \u003ccode\u003ecid\u003c/code\u003e parameter in \u003ccode\u003euser_detail\u003c/code\u003e GET requests.\u003c/li\u003e\n\u003cli\u003eImplement input validation and sanitization measures to prevent SQL injection vulnerabilities in web applications.\u003c/li\u003e\n\u003cli\u003eReview web server logs for suspicious GET requests targeting the \u003ccode\u003euser_detail\u003c/code\u003e view with potentially malicious SQL code in the \u003ccode\u003ecid\u003c/code\u003e parameter.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-05-26T13:40:01Z","date_published":"2026-05-26T13:40:01Z","id":"https://feed.craftedsignal.io/briefs/2026-05-joomla-ek-rishta-sqli/","summary":"Joomla! Component Ek Rishta version 2.10 is vulnerable to SQL injection allowing unauthenticated attackers to manipulate database queries by injecting SQL code via the cid parameter through GET requests to the user_detail view, potentially extracting sensitive database information.","title":"Joomla! Ek Rishta Component 2.10 SQL Injection Vulnerability","url":"https://feed.craftedsignal.io/briefs/2026-05-joomla-ek-rishta-sqli/"}],"language":"en","title":"CraftedSignal Threat Feed — Ek Rishta 2.10","version":"https://jsonfeed.org/version/1.1"}