SQL injection vulnerability in news.php in the Kunena component 1.7.2 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter.
kunena kunena 1.7.2