SQL injection vulnerability in the Filiale 1.0.4 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the idFiliale parameter.
joomla joomla 1.0.4