SQL Injection exists in the Jimtawl 2.2.7 component for Joomla! via the id parameter.
jimtawl project jimtawl 2.2.7