SQL Injection Vulnerability in Joomla! User Notes List View

SQL Injection Vulnerability in Joomla! User Notes List View

CVE-2018-8045 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.