search

ohio813 / owaspbwa

Automatically exported from code.google.com/p/owaspbwa
0 stars 0 forks source link

Add Joomla and vuln components #23

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
Add Joomla 1.5.15 
http://www.joomla.org/announcements/release-news/5249-joomla-1515-released.html 
and some vulnerable plugins/components.

Original issue reported on code.google.com by MichaelTCyr@gmail.com on 21 Apr 2011 at 6:11

GoogleCodeExporter commented 9 years ago 
http://www.exploit-db.com/exploits/17136/ may be a good plugin, we dont have 
any blind sql injection.

Original comment by MichaelTCyr@gmail.com on 21 Apr 2011 at 6:15

Attachments:

GoogleCodeExporter commented 9 years ago 
joomla added @ revision 168

Original comment by MichaelTCyr@gmail.com on 21 Apr 2011 at 6:38

GoogleCodeExporter commented 9 years ago 
Added XCloner 2.1 which suffers from a ton of vulnerabilities, but mainly 
command injection as referenced here: http://www.exploit-db.com/exploits/16246/

apparently this is not adding to the SVN correctly, still trying to determine 
why.

Original comment by MichaelTCyr@gmail.com on 22 Apr 2011 at 2:05

GoogleCodeExporter commented 9 years ago 
Installed VirtueMart component to joomla per 
http://www.exploit-db.com/exploits/17132/ as of revision 181.

Original comment by MichaelTCyr@gmail.com on 25 Apr 2011 at 12:18

GoogleCodeExporter commented 9 years ago 
reveision 182 confirm that the blind sql is working correctly.

Original comment by MichaelTCyr@gmail.com on 25 Apr 2011 at 1:01