BSQ Sitestats for Joomla bsqtemplateinc.php Multiple HTTP Header SQL Injection

ID OSVDB:29286
Type osvdb
Reporter OSVDB
Modified 2006-09-29T11:18:52


Technical Description

This vulnerability is only present when the magic_quotes_gpc PHP option is 'off'.

Solution Description

Upgrade to version 2.2.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.


Vendor URL: Secunia Advisory ID:21859 Related OSVDB ID: 29287 Related OSVDB ID: 29284 Related OSVDB ID: 29285 Other Advisory URL: Mail List Post: ISS X-Force ID: 29268 CVE-2006-7123 Bugtraq ID: 20267