CVE-2025-25226

{"id": "CVE-2025-25226", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2025-04-08T17:15:35.453", "references": [{"url": "https://developer.joomla.org/security-centre/963-20250401-framework-sql-injection-vulnerability-in-quotenamestr-method-of-database-package.html", "tags": ["Vendor Advisory"], "source": "security@joomla.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@joomla.org", "description": [{"lang": "en", "value": "CWE-89"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "Improper handling of identifiers lead to a SQL injection vulnerability in the quoteNameStr method of the database package. Please note: the affected method is a protected method. It has no usages in the original packages in neither the 2.x nor 3.x branch and therefore the vulnerability in question can not be exploited when using the original database class. However, classes extending the affected class might be affected, if the vulnerable method is used."}, {"lang": "es", "value": "La gesti\u00f3n incorrecta de identificadores provoca una vulnerabilidad de inyecci\u00f3n SQL en el m\u00e9todo quoteNameStr del paquete de base de datos. Nota: El m\u00e9todo afectado es un m\u00e9todo protegido. No se utiliza en los paquetes originales ni en la rama 2.x ni en la 3.x, por lo que la vulnerabilidad en cuesti\u00f3n no puede explotarse al usar la clase de base de datos original. Sin embargo, las clases que extienden la clase afectada podr\u00edan verse afectadas si se usa el m\u00e9todo vulnerable."}], "lastModified": "2025-06-04T20:50:08.840", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:joomla:joomla\\!:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C69B50FF-AD2E-4F47-BBB9-D6FAA51D0872", "versionEndExcluding": "2.2.0", "versionStartIncluding": "1.0.0"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D89B0522-E39C-4031-994C-27E6C6AB69AA", "versionEndExcluding": "3.4.0", "versionStartIncluding": "3.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@joomla.org"}