Vulnerabilities > Cwjoomla

DATE CVE VULNERABILITY TITLE RISK
2018-09-20 CVE-2018-14592 SQL Injection vulnerability in Cwjoomla products
The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php.
network
low complexity
cwjoomla CWE-89
7.5
2018-02-22 CVE-2018-7313 SQL Injection vulnerability in Cwjoomla CW Tags 2.0.6
SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter.
network
low complexity
cwjoomla CWE-89
7.5