Joomla! JMS Music Component SQL Injection Vulnerability [CVE-2018-6581]

CVE Number – CVE-2018-6581

A vulnerability in the JMS Music component of Joomla! could allow an unauthenticated, remote attacker to conduct an SQL injection attack on a targeted system.

The vulnerability is due to insufficient protections imposed by the affected software on certain search parameters. An attacker could exploit this vulnerability by sending a GET request with either the keyword, username, or artist parameter to a targeted system. A successful exploit could allow the attacker to conduct an SQL injection attack on the system.

Proof-of-concept code that demonstrates an exploit of this vulnerability is publicly available.

Administrators are advised to contact the vendor regarding future updates and releases.

Administrators are advised to allow only trusted users to have network access.

Administrators may consider using IP-based access control lists (ACLs) to allow only trusted systems to access affected systems.

Administrators are advised to implement an intrusion prevention system (IPS) or intrusion detection system (IDS) to help detect and prevent attacks that attempt to exploit this vulnerability.

Administrators can apply Snort SID 46041 to help prevent attacks that attempt to exploit this vulnerability.

Administrators are advised to monitor affected systems.