CVE-2018-6368

CVE-2018-6368 affects JomEstate PRO for Joomla!, with SQL Injection in the id parameter of task=detailed. Public records indicate affected versions up to 3.7 (and earlier) and a fixed release in 3.8 (current 4.1 as of updates). The issue stems from improper handling of the id parameter, enabling ...