Joomla! Component Catalogue – SQL Injection / Local File Inclusion

Exploit Database
16 阅读

作者： XroGuE

日期： 2010-11-30
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/35024/

source: https://www.securityfocus.com/bid/45090/info

The Joomla! Catalogue Component is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. By using directory-traversal strings to execute local script code in the context of the application, the attacker may be able to obtain sensitive information that may aid in further attacks. 

http://www.example.com/index.php?option=com_catalogue&Itemid=73&cat_id=[SQLi]

http://www.example.com/index.php?option=com_catalogue&controller=[LFI]

last Exploits
Joomla! Component Catalogue – SQL Injection / Local File Inclusion的更多信息

slickMsg 0.7-alpha – ‘top.php’ Cross-Site Scripting：
Stackposts Social Marketing Tool v1.0 – SQL Injection：
AUO Solar Data Recorder < 1.3.0 - Incorrect Access Control：
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (PoC) (Reset Password) (2)：
Online Admission System 1.0 – Remote Code Execution (RCE) (Unauthenticated)：
Cybertek CMS – Local File Inclusion：
IceWarp Mail Server 11.0.0.0 – Cross-Site Scripting：
Rails 5.2.1 – Arbitrary File Content Disclosure：