Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Joomla Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2026-35221 - Vulnerability Database
Joomla

Joomla Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2026-35221

Critical
Reference: CVE-2026-35221
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-35221
Title: Joomla Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

Improperly built filter clauses lead to a SQL injection vulnerability in the search query for com_finder.