Joomlaeventcal component 1.6.4com _ eventcalSQL injection blind injection vulnerability CVE: NAOSVDB-ID: NAAuthor: RoAd_KiLlErPublished: 2010-07-03Verified: Noviewsourceprint? [~] Foundedby ** RoAd_KiLlEr ** [~] Team: AlbanianHackingCrew [~] Contact: RoAd_KiLlEr
Joomla eventcal component 1.6.4 com_eventcalSQL injection blind Injection Vulnerability
CVE: N/
OSVDB-ID: N/
Author: RoAd_KiLlEr
PublishEd: 2010-07-03
Verified: No
View sourceprint? [~] Founded by ** RoAd_KiLlEr **
[~] Team: Albanian Hacking Crew
[~] Contact: RoAd_KiLlEr [at] Khg-Crew [dot] Ws
[~] Download App: http://joomlacode.org/gf/project/eventcal/frs/
========== ExPl0iT3d by ** RoAd_KiLlEr ** ==========
[+] Description:
EventCal is a calendar component
Joomla !. ItEnableS you to provIdE
Month, week and day-overview of events
To your users. If enabled, users will
Be ableSuBmit events from
Frontend of your site directly into
Calendar.
========================================================== =
[+] Dork: inurl: "com_eventcal"
========================================================== =
[+]. SQL-I VuLnErability
= +
[Exploit]: http://xiaoweio.cn/path/index.php? Option = com_eventcal & Itemid = [blind SQL-I]
========================================================== =
[!] Albanian Hacking Crew
========================================================
[!] ** RoAd_KiLlEr **
==============================================
[!] MaiL: sukihack [at] gmail [dot] com
==========================================================
[!] Greetz To: Ton! [W] indowS | X-n3t | b4cKd00r ~ | DarKHackeR. | The | DennY '| EaglE EyE | Lekosta | KHG | THE_1NV1S1BL3 & All Albanian/Kosova Hackers
========================================================== ===
[!] Spec Th4nks: Inj3ct0r.com & r0073r | indoushka from Dz-Ghost Team | MaFFiTeRRoR | Sid3 ^ effects | The_Exploited | And All My Friendz
======================================
[!] Red n' black I dress eagle on my chest
It's good to be an ALBANIAN
Keep my head up high for that flag I die
Im proud to be an ALBANIAN
========================================================== ====