Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) listid or (2) themeid parameter to index.php.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2014-07-21T14:00:00
Updated: 2024-08-06T11:34:36.530Z
Reserved: 2014-07-14T00:00:00
Link: CVE-2014-4960

No data.

Status : Modified
Published: 2014-07-21T14:55:06.800
Modified: 2024-11-21T02:11:10.620
Link: CVE-2014-4960

No data.