|
Description
|
|
(:An SQL injection vulnerability has been identified in Huge-IT Video Gallery, a plugin for Joomla.:A remote attacker could exploit it by using URLs that include specially crafted SQL statements in order to access entries in some database tables.::The vulnerability is due to an improper validation of user-supplied input used in SQL queries in the "galleryid" parameter in the "ajax_url.php" page.::A proof of concept is available.)
|
