What is CVE-2018-25433?

CVE-2018-25433 is a high-severity vulnerability in Joomlaextensions Je Photo Gallery, classified under SQL Injection. CVSS score: 8.2/10. Published 2026-06-01.

How severe is CVE-2018-25433?

High severity. CVSS v3 base score is 8.2 out of 10.

SQL Injection in Joomlaextensions Je Photo Gallery

CVE-2018-25433

Joomla Component JE Photo Gallery 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting malicious SQL code through the categoryid parameter. Attackers can send GET re…

Vulnerability class: SQL Injection

EPSS: 0.001 (21.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N.

Affected products

Joomlaextensions Je Photo Gallery — versions 1.1

Weakness classification (CWE)

CWE-89 — SQL Injection

References

disclosure@vulncheck.com (exploit)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2018-25433?: CVE-2018-25433 is a high-severity vulnerability in Joomlaextensions Je Photo Gallery, classified under SQL Injection. CVSS score: 8.2/10. Published 2026-06-01.
How severe is CVE-2018-25433?: High severity. CVSS v3 base score is 8.2 out of 10.