Joomla Component com_joomnik SQL Injection Vulnerability

2011-05-29T00:00:00
ID 1337DAY-ID-16199
Type zdt
Reporter SOLVER
Modified 2011-05-29T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            <------------------- header data start ------------------- >
#############################################################
Joomla Component Joomnik Gallery SQL Injection Vulnerability                                     
#############################################################
 
# Author : SOLVER ~ Bug Researchers
 
# Date : 26.05.2011
 
# Greetz : DreamPower - CWKOMANDO - Toprak - Equ - Err0r - 10line
 
# Name : Joomla com_joomnik
 
# Bug Type : SQL injection
 
# Infection : Admin Login Bilgileri Alinabilir.
 
# Example Vuln :
 
[+]/index.php?option=com_joomnik&album=[EXPLOIT]
 
[+] Dork:"com_joomnik"
 
[+] Demo: http://site.com/index.php?option=com_joomnik&album=6'
 
# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.
#############################################################
http://joomlacode.org/gf/project/joomnik/



#  0day.today [2018-01-01]  #