Vulnerabilities > Cwjoomla
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-20 | CVE-2018-14592 | SQL Injection vulnerability in Cwjoomla products The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php. | 9.8 |
| 2018-02-22 | CVE-2018-7313 | SQL Injection vulnerability in Cwjoomla CW Tags 2.0.6 SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter. | 9.8 |