CVE-2017-17872 – This SQL injection vulnerability in JEXTN Video... (How to Fix)

Q: What is the severity of CVE-2017-17872?

CVE-2017-17872 has a CVSS score of 9.8 (CRITICAL). This SQL injection vulnerability in JEXTN Video Gallery for Joomla allows attackers to execute arbitrary SQL commands through the id parameter. Attackers can potentially access, modify, or delete database content. All Joomla sites using the vulnerable extension version are affected.

📋 TL;DR

This SQL injection vulnerability in JEXTN Video Gallery for Joomla allows attackers to execute arbitrary SQL commands through the id parameter. Attackers can potentially access, modify, or delete database content. All Joomla sites using the vulnerable extension version are affected.

💻 Affected Systems

Products:

JEXTN Video Gallery extension for Joomla

Versions: 3.0.5

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects Joomla installations with JEXTN Video Gallery extension installed.

📦 What is this software?

Jextn Video Gallery by Jextn

View all CVEs affecting Jextn Video Gallery →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, privilege escalation, and full system takeover via subsequent attacks.

🟠

Likely Case

Database information disclosure, potential authentication bypass, and data manipulation.

🟢

If Mitigated

Limited impact with proper input validation and database permissions restricting damage to non-sensitive data.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: CONFIRMED

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit requires no authentication and is publicly available with working proof-of-concept.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.0.6 or later

Vendor Advisory: https://www.jextn.com/

Restart Required: No

Instructions:

1. Update JEXTN Video Gallery extension to version 3.0.6 or later. 2. Apply update through Joomla extension manager. 3. Clear Joomla cache after update.

🔧 Temporary Workarounds

Input Validation Filter

all

Add input validation to sanitize id parameter before processing

Modify component code to validate/sanitize id parameter using Joomla's JFilterInput

WAF Rule

all

Implement web application firewall rules to block SQL injection patterns

Add WAF rule to detect and block SQL injection attempts on id parameter

🧯 If You Can't Patch

Disable or remove JEXTN Video Gallery extension immediately
Implement strict network segmentation and access controls to limit exposure

🔍 How to Verify

Check if Vulnerable:

Check Joomla extension manager for JEXTN Video Gallery version. If version is 3.0.5, system is vulnerable.

Check Version:

Check via Joomla admin panel: Extensions → Manage → Check version of JEXTN Video Gallery

Verify Fix Applied:

Confirm JEXTN Video Gallery version is 3.0.6 or later in Joomla extension manager.

📡 Detection & Monitoring

Log Indicators:

Unusual SQL queries in database logs
Multiple requests with SQL injection patterns in id parameter
Error logs showing SQL syntax errors

Network Indicators:

HTTP requests containing SQL keywords in id parameter
Unusual traffic patterns to video gallery component

SIEM Query:

web.url:*view=category* AND web.param.id:*SELECT* OR web.param.id:*UNION* OR web.param.id:*OR*

📊 Metadata

CVE ID: CVE-2017-17872

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-89

Published: December 27, 2017

Last Updated: April 20, 2025

🔗 References

https://www.exploit-db.com/exploits/43330/ Exploit,Third Party Advisory,VDB Entry
https://www.exploit-db.com/exploits/43330/ Exploit,Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2017-17872, you might also want to check these: