HIGH
Joomlashack
CVE published 2026-06-19
CVE-2017-20259
CVE-2017-20259 is a high-severity SQL injection vulnerability in Joomla OSDownloads 1.7.4. Attackers can inject malicious SQL code through the id parameter in GET requests to index.php with option=com_osdownloads&view=item&id=[SQL]. This allows extraction of sensitive database information, including credentials and configuration data. Defenders should prioritize patching or mitigating this vulnerability t [truncated]