Description
SQL injection vulnerability in index.php in the MGFi XfaQ (com_xfaq) 1.2 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an answer action.
Remediation
References
Related Vulnerabilities
WordPress Plugin KNR Author List Widget 'listItem[]' Parameter SQL Injection (2.0.0)
WordPress Plugin WordPress Related Posts Cross-Site Request Forgery (2.6.1)
Oracle Application Server CVE-2010-0070 Vulnerability (CVE-2010-0070)
WordPress Other Vulnerability (CVE-2007-0109)
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.16.68)