Toxa

**Name of the Vulnerable Software and Affected Versions** Datsogallery (com datsogallery) module version 1.6 for Joomla! **Description** The issue allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header in the sub votepic.php file. **Recommendations** For Datsogallery (com datsogallery) module version 1.6, consider restricting access to the sub votepic.php file until a patch is available. As a temporary workaround, avoid using the User-Agent HTTP header in the affected module to minimize the risk of exploitation.