CVE-2018-6604

CVE: CVE-2018-6604
Published: 2018-02-05T21:29Z
Vendor: zh_yandexmap_project
Products: zh_yandexmap
Versions: 6.2.1.0,
Description Language: en
Description: SQL Injection exists in the Zh YandexMap 6.2.1.0 component for Joomla! via the id parameter in a task=getPlacemarkDetails request.
References:
https://www.exploit-db.com/exploits/43975/