Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x up to and including 4.1.7, and possibly 3.x, for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) listid or (2) themeid parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
joomlaboat com youtubegallery 3.9.9 |
||
joomlaboat com youtubegallery 4.1.6 |
||
joomlaboat com youtubegallery 4.1.2 |
||
joomlaboat com youtubegallery 3.9.6 |
||
joomlaboat com youtubegallery 4.0.2 |
||
joomlaboat com youtubegallery 4.1.0 |
||
joomlaboat com youtubegallery 3.9.7 |
||
joomlaboat com youtubegallery 4.1.3 |
||
joomlaboat com youtubegallery 3.9.2 |
||
joomlaboat com youtubegallery 4.1.5 |
||
joomlaboat com youtubegallery 4.1.7 |
||
joomlaboat com youtubegallery 3.9.0 |
||
joomlaboat com youtubegallery 3.9.4 |
||
joomlaboat com youtubegallery 4.0.0 |
||
joomlaboat com youtubegallery 4.1.1 |
||
joomlaboat com youtubegallery 4.0.9 |
||
joomlaboat com youtubegallery 4.0.8 |
||
joomlaboat com youtubegallery 3.9.3 |
||
joomlaboat com youtubegallery 4.1.4 |
||
joomlaboat com youtubegallery 3.9.8 |
||
joomlaboat com youtubegallery 3.9.5 |
||
joomlaboat com youtubegallery 4.0.1 |