CVE-2018-25197
SQL Injection in PlayJoom 0.10.1 Allows Data Extraction
Publication date: 2026-03-06
Last updated on: 2026-03-06
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| playjoom | playjoom | to 0.10.1 (exc) |
| playjoom | playjoom | 0.10.1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-89 | The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
[{'type': 'paragraph', 'content': "CVE-2018-25197 is a SQL injection vulnerability in PlayJoom version 0.10.1 that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'catid' parameter in HTTP GET requests."}, {'type': 'paragraph', 'content': 'Attackers can send specially crafted requests to the URL endpoint index.php with parameters option=com_playjoom&view=genre&catid=[SQL], which enables them to manipulate the database queries executed by the application.'}, {'type': 'paragraph', 'content': 'This vulnerability arises from improper neutralization of special elements in SQL commands, allowing attackers to extract sensitive database information such as usernames, database names, and version details.'}] [1, 2]
How can this vulnerability impact me? :
[{'type': 'paragraph', 'content': 'This vulnerability can lead to unauthorized access to sensitive database information, including usernames, database names, and version details.'}, {'type': 'paragraph', 'content': "An attacker exploiting this flaw can extract confidential data, which may result in data leakage and compromise of the web application's security."}, {'type': 'paragraph', 'content': 'Since the vulnerability requires no authentication and has a low attack complexity, it poses a significant risk of exploitation over the network.'}] [1, 2]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
[{'type': 'paragraph', 'content': "This SQL injection vulnerability can be detected by sending crafted HTTP GET requests to the vulnerable PlayJoom application targeting the 'catid' parameter in the URL."}, {'type': 'paragraph', 'content': 'A typical detection command involves using curl or similar HTTP clients to send a request like:'}, {'type': 'list_item', 'content': 'curl "http://[target]/index.php?option=com_playjoom&view=genre&catid=1\' OR 1=1--"'}, {'type': 'paragraph', 'content': 'If the response contains unexpected database information or error messages indicating SQL query execution, it suggests the presence of the vulnerability.'}, {'type': 'paragraph', 'content': "More complex payloads can be used to extract database metadata, such as usernames, database names, and version details, by injecting SQL functions like USER(), DATABASE(), and VERSION() into the 'catid' parameter."}] [1, 2]
What immediate steps should I take to mitigate this vulnerability?
[{'type': 'paragraph', 'content': 'Immediate mitigation steps include:'}, {'type': 'list_item', 'content': "Apply input validation and sanitization on the 'catid' parameter to prevent SQL injection."}, {'type': 'list_item', 'content': 'Use prepared statements or parameterized queries in the PlayJoom application code to safely handle user input.'}, {'type': 'list_item', 'content': 'Restrict direct access to the vulnerable endpoint if possible, for example by using web application firewalls or access control rules.'}, {'type': 'list_item', 'content': 'Update or patch PlayJoom to a version that addresses this vulnerability if available.'}, {'type': 'paragraph', 'content': 'Since the vulnerability allows unauthenticated attackers to execute arbitrary SQL queries, immediate action is critical to prevent data leakage or further exploitation.'}] [1, 2]