CVE-2016-1000271

CVE-2016-1000271 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Joomla extension DT Register version before 3.1.12 (Joomla 3.x) / 2.8.18 (Joomla 2.5) contains an SQL injection in "/index.php?controller=calendar&format=raw&cat[0]=SQLi&task=events". This attack appears to be exploitable if the attacker can reach the web server.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.