[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Joomla Component com_extcalendar Blind SQL Injection Vulnerability

Author
Lagripe-Dz
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-13762
Category
web applications
Date add
20-08-2010
Platform
php
==================================================================
Joomla Component com_extcalendar Blind SQL Injection Vulnerability
==================================================================

# Date: 20/08/2010                                                       0
# Author : Lagripe-Dz                                                   1
# contact : Lagripe-Dz@hotmail.com                                       8
# Home : Algeria                                                       1
# Category: webapps/0day                                               0
# Tested on: [ win xp sp2 ]                                               8
# Dork  allinurl:"com_extcalendar"                                       1
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
 
[+] Vulnerable File :
http://www.site.com/[PATH]/components/com_extcalendar/cal_popup.php?extmode=view&extid=[BLIND_SQL]
 
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
                 Greetz 2 Allah and Ramadan Karim
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0



#  0day.today [2024-12-25]  #