Impact
This vulnerability is a classic SQL injection flaw that permits unauthenticated attackers to send specially crafted GET requests to the Joomla! component J‑BusinessDirectory. By manipulating the `type` parameter in the request to `index.php?option=com_jbusinessdirectory&task=categories.getCategories` and inserting UNION‑based statements, an attacker can cause the backend database to return arbitrary query results. The flaw exposes database schemas and potentially sensitive stored data, thereby compromising the confidentiality of the site’s data.
Affected Systems
Affected systems are Joomla! installations that use the Cmsjunkie J‑BusinessDirectory component version 4.9.7. The vulnerability is specific to that component and is triggered through the public-facing URL for category retrieval.
Risk and Exploitability
The CVSS score of 8.8 indicates a high severity. No EPSS score is available, and the vulnerability is not listed in the CISA KEV catalog, suggesting no widespread active exploitation has been reported as of the data available. Nevertheless, because authentication is not required and the exploit can be performed with a simple HTTP GET request, the attack vector is open and the probability of exploitation remains non‑negligible. An attacker with network access to the site could extract database contents, leading to serious data disclosure.
OpenCVE Enrichment