Description
Contao 4.x allows SQL Injection. Fixed in Contao 4.4.39 and Contao 4.7.5.
Remediation
References
Related Vulnerabilities
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6613)
WordPress Plugin YITH WooCommerce Best Sellers Security Bypass (1.1.11)
WordPress Plugin Classified Listing Store & Membership Cross-Site Scripting (1.4.19)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4592)