The Joomla Xeslidegalf component suffers from a remote SQL injection vulnerability.
247ee787755fd143943af0a2121618bf6b5a896ebea91ecabd43e800566c7ae2
#########################################################################
[+] Exploit Title : Joomla [ Sql Injection Vunerability ]
[~] Author : Ne0 H4ck3R
[~] Contact : backtrack1337@hotmail.com
[~] Date : 03-08-2011
[~] HomePage : www.indishell.in
[~] Dork : inurl"com_xeslidegalfx"
[~] Tested on: Joomla 1.5.x
[~] Vendor : http://art-kabbalah.net/component/xeslidegalfx/
[~] Vulnerability Style : com_xeslidegalfx [ Sql Injection Vunerability ]
#########################################################################
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Greetz T0: -[SiLeNtp0is0n]-, stRaNgEr(lucky), inX_rOot, DarkL00k, Th3 RDX, G00g!3 W@rr!0r,
eXeSoul, str1k3r, co0Lt04d , ATUL DWIVEDI , Jackh4xor, dodo , darkw0lf, ethical n00b, r00t deviL
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
......\m/ INDIAN CYBER ARMY \m/......
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Vulnerability :-
~ SQL injection Vulnerability ~
[#] http://targetsite/[path]/index.php?option=com_xeslidegalfx&Itemid=&func=detail&id=1
[#] http://targetsite/[path]/index.php?option=com_xeslidegalfx&Itemid=&func=detail&id= [ your skill ]
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
=> c0d3 for motherland, h4ck for motherland
Enj0y! :D
[#] DOne now time to rock \m/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
finish(0);
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
#End 0Day#