Joomla Xeslidegalf SQL Injection

2011-08-0300:00:00
Ne0 H4ck3R
packetstormsecurity.com
JSON
`#########################################################################  
  
[+] Exploit Title : Joomla [ Sql Injection Vunerability ]  
[~] Author : Ne0 H4ck3R  
[~] Contact : [email protected]  
[~] Date : 03-08-2011  
[~] HomePage : www.indishell.in  
[~] Dork : inurl"com_xeslidegalfx"  
[~] Tested on: Joomla 1.5.x  
[~] Vendor : http://art-kabbalah.net/component/xeslidegalfx/  
[~] Vulnerability Style : com_xeslidegalfx [ Sql Injection Vunerability ]  
  
#########################################################################  
  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
Greetz T0: -[SiLeNtp0is0n]-, stRaNgEr(lucky), inX_rOot, DarkL00k, Th3 RDX, G00g!3 W@rr!0r,  
eXeSoul, str1k3r, co0Lt04d , ATUL DWIVEDI , Jackh4xor, dodo , darkw0lf, ethical n00b, r00t deviL  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
  
  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
......\m/ INDIAN CYBER ARMY \m/......  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
  
  
  
Vulnerability :-  
  
~ SQL injection Vulnerability ~  
  
  
[#] http://targetsite/[path]/index.php?option=com_xeslidegalfx&Itemid=&func=detail&id=1  
  
[#] http://targetsite/[path]/index.php?option=com_xeslidegalfx&Itemid=&func=detail&id= [ your skill ]   
  
  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
  
  
=> c0d3 for motherland, h4ck for motherland  
  
  
  
Enj0y! :D  
  
  
[#] DOne now time to rock \m/  
  
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~  
  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
  
finish(0);  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=  
  
#End 0Day#  
`
JSON