CVE-2018-6370

CVE: CVE-2018-6370
Published: 2018-02-17T07:29Z
Vendor: neojoomla
Products: neorecruit
Versions: 4.1,
Description Language: en
Description: SQL Injection exists in the NeoRecruit 4.1 component for Joomla! via the (1) PATH_INFO or (2) name of a .html file under the all-offers/ URI.
References:
https://exploit-db.com/exploits/44123