SQL Injection Vulnerability in CWJoomla CW Article Attachments PRO and CW Article Attachments FREE Extensions for Joomla!

SQL Injection Vulnerability in CWJoomla CW Article Attachments PRO and CW Article Attachments FREE Extensions for Joomla!

CVE-2018-14592 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.