SQL Injection exists in the Google Map Landkarten through 4.2.3 component for Joomla! via the cid or id parameter in a layout=form_markers action, or the map parameter in a layout=default action.Referenceshttps://exploit-db.com/exploits/44113http://www.securityfocus.com/bid/103094
