SQL injection vulnerability in the acctexp (com_acctexp) component 0.12.x and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the usage parameter in a subscribe action to index.php.
Software | From | Fixed in |
---|---|---|
Joomla / joomla | - | - |
Joomla / com_acctexp | 0.12 | 0.12.x |