2 matches found
CVE-2018-6577
SQL Injection exists in the JEXTN Membership 3.1.0 component for Joomla! via the usrplan parameter in a view=myplans&task=myplans.usersubscriptions request...
CVE-2018-6577
CVE-2018-6577 affects Joomla! installations using the JEXTN Membership 3.1.0 component. The vulnerability is a SQL injection caused by unsanitized input supplied through the usr_plan parameter in requests of the form view=myplans&task=myplans.usersubscriptions. Connected sources (CNVD/NVD) confir...