Back to top

Autore Topic: Joomla com_phocadocumentation (id) Remote SQL Injection Exploit  (Letto 1880 volte)


Offline = odino =

  • Instancabile
  • ******
  • Post: 5696
  • Sesso: Maschio
  • "In realtà li trasforma in menomati" Danzel
    • Mostra profilo
Re: Joomla com_phocadocumentation (id) Remote SQL Injection Exploit
« Risposta #1 il: 05 Gen 2009, 21:08:26 »
ups poveri quelli di phoca

Offline lbar

  • Nuovo arrivato
  • *
  • Post: 1
    • Mostra profilo
Re: Joomla com_phocadocumentation (id) Remote SQL Injection Exploit
« Risposta #2 il: 06 Gen 2009, 22:32:50 »
did you try the hack?

the id in section (which is described in the perl file) is protected by two methods:

by JRequest method and by (int) (all strings will be changed to integer) in sql query ...

 



Web Design Bolzano Kreatif