SQL Injection exists in the AlphaIndex Dictionaries 1.0 component for Joomla! via the letter parameter.Referenceshttps://www.exploit-db.com/exploits/45476/http://packetstormsecurity.com/files/149532/Joomla-AlphaIndex-Dictionaries-1.0-SQL-Injection.html
