Security Advisory

CVE-2010-4638

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-12-30 20:00:00

Last updated 2024-09-16 17:23:03

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in the submitSurvey function in controller.php in JQuarks4s (com_jquarks4s) component 1.0.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the q parameter in a submitSurvey action to index.php.

← Browse all CVEs View on cve.org ↗