Vulnerability
SQL Injection in Creative Gallery via id parameter
Description
The Application does not sanitize or escape id parameter, making it vulnerable to sql injection.
CVE-ID
CVE-2023-23758
Vendor
Creative Solutions
Product
Joomla Extension Creative Gallery
Disclosure Timeline
Reported On 06-07-2023
Made Public On:
Fixed On: Not Fixed
Credits
Vishal and Siva