28 lines
No EOL
793 B
Text
28 lines
No EOL
793 B
Text
<------------------- header data start ------------------- >
|
|
#############################################################
|
|
Joomla Component Joomnik Gallery SQL Injection Vulnerability
|
|
#############################################################
|
|
|
|
# Author : SOLVER ~ Bug Researchers
|
|
|
|
# Date : 26.05.2011
|
|
|
|
# Greetz : DreamPower - CWKOMANDO - Toprak - Equ - Err0r - 10line
|
|
|
|
# Name : Joomla com_joomnik
|
|
|
|
# Bug Type : SQL injection
|
|
|
|
# Infection : Admin Login Bilgileri Alinabilir.
|
|
|
|
# Example Vuln :
|
|
|
|
[+]/index.php?option=com_joomnik&album=[EXPLOIT]
|
|
|
|
[+] Dork:"com_joomnik"
|
|
|
|
[+] Demo: http://site.com/index.php?option=com_joomnik&album=6'
|
|
|
|
# Bug Fix Advice : Zararli Karakterler Filtrenmelidir.
|
|
#############################################################
|
|
http://joomlacode.org/gf/project/joomnik/ |