CVE-2019-25752
CVE-2019-25752 affects the Joomla! extension J-BusinessDirectory 4.9.7 . The vulnerability is an SQL injection in the parameter screen path: attackers can inject UNION-based SQL via the type parameter when calling index.php with option=com_jbusinessdirectory&task=categories.getCategories, enablin...