Joomla extension DT Register version before 3.1.12 (Joomla 3.x) / 2.8.18 (Joomla 2.5) contains an SQL injection in "/index.php?controller=calendar&format=raw&cat[0]=SQLi&task=events". This attack appears to be exploitable if the attacker can reach the web server.
9.8CVSS
9.7AI Score
0.003EPSS
SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request.
9.8CVSS
9.7AI Score
0.003EPSS