Vulnerabilities (CVE)

Filtered by vendor Joomcoder Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2026-49048 1 Joomcoder 1 Joomcck 2026-06-30 N/A 9.8 CRITICAL
The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly concatenating a user-supplied request parameter into the query string without escaping or parameterisation.