Login Sign Up

CVE-2018-17375

9.8 CRITICAL
SQL Injection

📋 TL;DR

This vulnerability allows SQL injection attacks through the 'id' parameter in Joomla's Music Collection 3.0.3 component. Attackers can execute arbitrary SQL commands, potentially compromising the database. All Joomla installations using Music Collection 3.0.3 are affected.

💻 Affected Systems

Products:
  • Joomla Music Collection Component
Versions: 3.0.3
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects Joomla installations with Music Collection component installed. Component must be enabled and accessible.

📦 What is this software?

Music Collection by Joomlathat

View all CVEs affecting Music Collection →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data manipulation, privilege escalation, and potential remote code execution via database functions.

🟠

Likely Case

Database information disclosure, authentication bypass, and data manipulation affecting music collection data and potentially other Joomla components.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: CONFIRMED
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Public exploit code available. Simple SQL injection via id parameter requires minimal technical skill.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.0.4 or later

Vendor Advisory: https://extensions.joomla.org/extension/music-collection/

Restart Required: No

Instructions:

1. Update Music Collection component to version 3.0.4 or later via Joomla Extension Manager. 2. Verify update completed successfully. 3. Test music collection functionality.

🔧 Temporary Workarounds

Disable Music Collection Component

all

Temporarily disable the vulnerable component until patching is possible

Navigate to Joomla Admin > Extensions > Manage > Disable Music Collection component

Web Application Firewall Rule

all

Block SQL injection patterns targeting the id parameter

Add WAF rule: Block requests containing SQL injection patterns in id parameter

🧯 If You Can't Patch

  • Implement strict input validation for all id parameters in the application
  • Deploy web application firewall with SQL injection protection rules

🔍 How to Verify

Check if Vulnerable:

Check Joomla extensions manager for Music Collection component version 3.0.3

Check Version:

Check via Joomla Admin: Extensions > Manage > Search for 'Music Collection'

Verify Fix Applied:

Confirm Music Collection component version is 3.0.4 or later in extensions manager

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL error messages in logs
  • Multiple failed parameter requests with SQL syntax
  • Unexpected database queries from web application

Network Indicators:

  • HTTP requests with SQL injection patterns in id parameter
  • Unusual database connection patterns from web server

SIEM Query:

web_requests WHERE url_parameter CONTAINS 'id' AND (parameter_value CONTAINS 'UNION' OR parameter_value CONTAINS 'SELECT' OR parameter_value CONTAINS 'OR 1=1')

📊 Metadata

CVE ID: CVE-2018-17375
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: September 28, 2018
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2018-17375, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)