SQL injection vulnerability in index.php in the Quiz (com_quiz) 0.81 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a user_tst_shw action.
Software | From | Fixed in |
---|---|---|
Joomla / com_quiz | - | 0.81.x |
mambo / com_quiz | - | 0.81.x |