Joomla releases patches on Thursday for a vulnerability that can allow attackers to get full administrative access to a website. The flaw was found by Asaf Orphani, a researcher with Trustwave’s SpiderLabs, and Netanel Rubin of PerimeterX. The latest version of the popular content management system is 3.4.5.4. The vulnerability is one of the most prevalent ones within web applications, Orpani wrote in a blog post. It’s also possible to exploit e-commerce sites such as VirtueMart and VirtueMart.”]
Source: https://www.csoonline.com/article/2996880/joomla-releases-patch-for-serious-sqli-flaw.html