Extension: JEvents from jevents.net
Vulnerability: SQL injection
Versions affected prior to 3.2.20
Resolution: update to 3.2.20 - JEvents 3.4.0RC6 is also available for Joomla 3.4+ which fixes the same security issue.
Update notice URL: https://www.jevents.net/component/zoo/item/jevents-33