CVE-2023-38044

CVE-2023-38044: Extension - hikashop.com - SQLi in HikaShop component for Joomla <= 4.7.2

Vendor Hikashop.com

Product HikaShop component for Joomla

Weakness CWE-89 · SQLi

Published August 7, 2023

Last update October 20, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability allows SQL Injection.

Key dates

02Disclosure timeline

August 7, 2023 CVE published

October 20, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-38044

Related vulnerabilities

04Related CVE

CVE-2025-4196 SourceCodester Patient Record Management System birthing.php sql injection CVE-2022-31082 SQL Injection via package deployment tasks in glpi-inventory-plugin CVE-2025-0949 itsourcecode Tailoring Management System partview.php sql injection CVE-2025-10970 SQLi in Kolay Software's Talentics CVE-2025-5755 SourceCodester Open Source Clinic Management System email_config.php sql injection