SQL injection vulnerability in index.php in the Kemas Antonius com_quran 1.1 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the surano parameter in a viewayat action.
Software | From | Fixed in |
---|---|---|
mambo / kemas_antonius_com_quran | - | 1.1.x |
Joomla / kemas_antonius_com_quran | - | 1.1.x |