ReMOSitory module for Mambo





Google Dork Description:

ReMOSitory module for Mambo

It is reported that the ReMOSitory module for Mambo is prone to an SQL injection vulnerability. This issue is due to a failure of the module to properly validate user supplied URI input. Because of this, a malicious user may influence database queries in order to view or modify sensitive information, potentially compromising the software or the database. It may be possible for an attacker to disclose the administrator password hash by exploiting this issue.Full report: suggests: inurl:index.php?option=com_remository&Itemid= Renegade added : ".. to get an administrator login, change the url to .. it will pop up an login box...