SQL Injection exists in the SquadManagement 1.0.3 component for Joomla! via the id parameter.
squadmanagement project squadmanagement 1.0.3