SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter parameter.Referenceshttps://exploit-db.com/exploits/44162
