PatchSiren cyber security CVE debrief
CVE-2018-25348 harmistechnology CVE debrief
CVE-2018-25348 documents an unauthenticated SQL injection vulnerability in the Joomla! component Ek Rishta version 2.10. The flaw resides in the user_detail view, where the cid parameter fails to properly sanitize user-supplied input before incorporation into database queries. Attackers can exploit this weakness via crafted GET requests to extract sensitive information from the underlying database. The vulnerability carries a HIGH severity CVSS score of 8.8, reflecting significant confidentiality impact with network-based attack vectors requiring no authentication or user interaction. The CVE record was published on 2026-05-23 and subsequently modified on 2026-05-26. The vulnerability has been assigned CWE-89 (Improper Neutralization of Special Elements used in an SQL Command). No known exploitation in ransomware campaigns has been documented, and the vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog.
- Vendor
- harmistechnology
- Product
- Ek Rishta
- CVSS
- HIGH 8.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-05-23
- Original CVE updated
- 2026-05-26
- Advisory published
- 2026-05-23
- Advisory updated
- 2026-05-26
Who should care
Organizations running Joomla! content management systems with the Ek Rishta component installed, particularly version 2.10 or earlier. Web application security teams, Joomla! site administrators, and managed service providers hosting Joomla! installations should prioritize assessment and remediation. Organizations in sectors using matrimonial or matchmaking website functionality (the stated purpose of Ek Rishta) may face elevated risk due to sensitive personal data storage.
Technical summary
The Ek Rishta Joomla! component version 2.10 contains a SQL injection vulnerability in its user_detail view. The cid parameter accepts unsanitized input that is directly concatenated into SQL queries. Unauthenticated remote attackers can exploit this via HTTP GET requests to manipulate database queries and extract sensitive information. The vulnerability requires no authentication credentials or user interaction, making it trivially exploitable. The CVSS 4.0 scoring reflects high confidentiality impact with network accessibility and low attack complexity.
Defensive priority
HIGH
Recommended defensive actions
- Immediately remove or disable the Ek Rishta component if version 2.10 or earlier is deployed
- Apply input validation and parameterized queries to all database interactions if maintaining custom code
- Monitor web server logs for suspicious GET requests to user_detail view containing SQL metacharacters
- Implement Web Application Firewall rules to detect and block SQL injection attempts against Joomla! components
- Review database access logs for unauthorized query patterns or unexpected data extraction
- Contact the vendor or extension developer for patched versions if continued use is required
- Consider database activity monitoring to detect anomalous query execution patterns
Evidence notes
Vulnerability identified in Ek Rishta Joomla! component version 2.10. SQL injection vector confirmed through cid parameter in user_detail view. CVSS 4.0 vector indicates network attack vector with low attack complexity, no privileges required, and high confidentiality impact.
Official resources
2026-05-23T19:16:54.853Z