CVE-2018-7312by Jeremyin Security Bulletinson Posted on February 22, 2018 SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter parameter.