CVE-2018-6394
CVE-2018-6394 affects the Joomla! InviteX component version 3.0.5, where an SQL injection is exposed in the invite_type parameter of the view=invites action. The root cause is an unsafely handled user-controlled input leading to SQL injection, enabling an attacker to manipulate the backend databa...