CVE-2026-49048
Vulnerability Description
The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly concatenating a user-supplied request parameter into the query string without escaping or parameterisation.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-89
Source
NVD
Vendor
joomcoder.com
Product
JoomCCK extension for Joomla
Discussion (0)
Add Comment
No comments yet. Be the first!