1 results (0.002 seconds)

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

SQL injection vulnerability in the Mydyngallery (com_mydyngallery) component 1.4.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the directory parameter to index.php. Vulnerabilidad de inyección SQL en el componente Mydyngallery (com_mydyngallery) 1.4.2 para Joomla!, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro "directory" a index.php. • https://www.exploit-db.com/exploits/7343 http://www.securityfocus.com/archive/1/498916/100/0/threaded http://www.securityfocus.com/bid/32639 https://exchange.xforce.ibmcloud.com/vulnerabilities/47087 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •