Joomla Cmotour SQL Injection

2012-01-28T00:00:00
ID PACKETSTORM:109231
Type packetstorm
Reporter the_cyber_nuxbie
Modified 2012-01-28T00:00:00

Description

                                        
                                            `[ Joomla Component com_cmotour SQLinjection Vulnerability ]  
  
[x] Author : the_cyber_nuxbie  
[x] Home : www.thecybernuxbie.com  
[x] E-mail : staff@thecybernuxbie.com  
[x] Found : 28 January 2012 @ 04:53 PM.  
[x] Tested : Back|Track 5.  
[x] Dork : inurl:"/index.php?option=com_cmotour"  
________________________________________________________________  
****************************************************************  
  
- Exploit Report:  
http://localhost/index.php?option=com_cmotour&task=cat&Itemid=xxx&id=[SQL Injection]  
  
- Website Vuln SQLi:  
http://www.legendlandsdiscovery.com/index.php?option=com_cmotour&task=cat&Itemid=2&id=18' + [SQL Injection]  
  
0day no more...  
"n0 d0rk f0r k1dd10ts"  
  
- Greetz:  
No Thanks,,,  
`