CVE-2008-2701

Name of the Vulnerable Software and Affected Versions Joomla! component GameQ (com gameq) versions 4.0 and earlier

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the category id parameter in a page action to "index.php".

Recommendations For versions 4.0 and earlier, consider updating to a version that contains a fix for this issue, as no specific fix is provided for these versions. As a temporary workaround, restrict access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the category id parameter in the affected endpoint until the issue is resolved.