Joomla · Joomla Mod Einsatz Stats · CVE-2016-15016
**Name of the Vulnerable Software and Affected Versions**
joomla mod einsatz stats versions up to 0.2
**Description**
A critical issue was found, affecting the `getStatsByType` function in the `helper.php` file. The manipulation of the `year` argument leads to SQL injection.
**Recommendations**
For versions up to 0.2, upgrade to version 0.3 to address this issue. As a temporary workaround, consider restricting the manipulation of the `year` argument in the `getStatsByType` function until the upgrade is applied.