CVE-2018-17383

CVE-2018-17383

SQL Injection exists in the Collection Factory 4.1.9 component for Joomla! via the filter_order or filter_order_Dir parameter.

Source: CVE-2018-17383