VYPR
High severity7.5NVD Advisory· Published Sep 25, 2020· Updated Jun 17, 2026

CVE-2020-19451

CVE-2020-19451

Description

SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.