HIGH
Gegabyte
CVE published 2026-06-19
CVE-2017-20254
CVE-2017-20254 is a high-severity SQL injection vulnerability in Joomla! Component User Bench 1.0. Unaffected attackers can inject malicious SQL code through the userid parameter in GET requests to index.php. This allows extraction of sensitive database information, including credentials and configuration data. The vulnerability has a CVSS score of 8.8, indicating a high level of risk. Joomla! site admini [truncated]