3 matches found
CVE-2018-6585
SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filtercreator or filtereventscat parameter...
CVE-2018-6585
SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filtercreator or filtereventscat parameter...
CVE-2018-6585
CVE-2018-6585 concerns Joomla! JTicketing component 2.0.16 (and earlier) where SQL injection is possible through the events view using filter_creator or filter_events_cat parameters. The root cause is untrusted input used in the query construction, enabling an attacker to manipulate the database....