A SQLi vulnerability in DJ-Classifieds component 3.9.2-3.10.1 for Joomla was discovered. The issue allows privileged users to execute arbitrary SQL commands.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://dj-extensions.com/ |
Configurations
No configuration.
History
15 Apr 2026, 00:35
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
15 Aug 2025, 12:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-08-15 12:15
Updated : 2026-06-17 09:40
NVD link : CVE-2025-54474
Mitre link : CVE-2025-54474
CVE.ORG link : CVE-2025-54474
JSON object : View
Products Affected
No product.
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
