Description Joomla! 1.6.0 is vulnerable to SQL Injection via the filter_order and filer_order_Dir parameters. Remediation References CVE-2011-1151 Related Vulnerabilities WordPress Plugin Efence Multiple Cross-Site Scripting Vulnerabilities (1.3.2) Phusion Passenger Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16355) ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-1499) WordPress Plugin Site Reviews Cross-Site Scripting (5.17.2) WordPress Plugin User Photo Cross-Site Scripting (0.9.5.1) Severity Critical Classification CVE-2011-1151 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Tags Missing Update Known Vulnerabilities