CVE-2019-19846

CVE-2019-19846

EPSS 1.7%

In Joomla! before 3.9.14, the lack of validation of configuration parameters used in SQL queries caused various SQL injection vectors.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://developer.joomla.org/security-centre/797-20191202-core-various-sql-injections-through-configuration-parameters