Joomla! Component Freestyle FAQ Lite 1.3 – ‘faqid’ SQL Injection

• Exploit Database
• 110 阅读

• 作者： Chip d3 bi0s
  日期： 2010-04-06
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/12078/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60

  --------------------------------------------------------------------------------- Joomla Freestyle FAQ Lite Component 1.3 (faqid) SQL Injection ---------------------------------------------------------------------------------   Author : Chip D3 Bi0s Group : LatinHackTeam Email & msn : chipdebios@gmail.com Date : 05 april 2010 Critical Lvl : Moderate Impact : Exposure of sensitive information Where : From Remote ---------------------------------------------------------------------------   Affected software description: ~~~~~~~~~~~~~~~~~~~~~~~~~~~     Application : Freestyle FAQ Lite version : 1.3 Developer : Freestyle Joomla License : GPLv2 type: Non-Commercial Date Added : 22 March 2010 Download : http://freestyle-joomla.com/fssdownloads/viewcategory/2 Demo : http://freestyle-joomla.com/demo     Description :   Freestyle FAQ Lite is designed to provide you with a highly customised Frequently Asked Questions (FAQs) module on your Joomla website. There are various customisable options, you can display FAQs under a menu item or within a module.   • Multiple categories • Search all FAQs • Add an image for each category • Link directly to a FAQ category or article from a menu item • View all FAQs at once (option to hide this) • Module to list FAQ categories anywhere on any page • Full image and html support for each FAQ • WYSIWYG editor for FAQs • Attach full html description to each category FAQs can be toggled as published or unpublished • Various Joomla back end parameters • Multiple view modes for question list - Normal list - clicking a category takes you to a different page with FAQ list • Multiple FAQ list modes - All questions and answers on one page     --------------   how to exploit   http://127.0.0.1/index.php?option=com_fss&view=faq&Itemid=4&catid=1&tmpl=component&faqid={sql}   ------------------------     +++++++++++++++++++++++++++++++++++++++ [!] Produced in South America +++++++++++++++++++++++++++++++++++++++