Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnwatch mailing list archives

zOOM Media Gallery - Simple SQL Injection discovery
From: "Andreas Constantinides" <aconstantinides () OdysseyConsultants com>
Date: Mon, 11 Apr 2005 08:24:41 +0300

Description:
        zOOm Media Gallery (http://zoom.ummagumma.nl) is a php/sql      component+module for    MamboCMS and is in use 
by many sites of the internet.

        I discover a simple SQL Injection in it.
 
Affected Versions:
      zOOm Image Gallery 2.1.2, *
 
POC:
      It is possible to proof my concept using the original site of zOOM:
        http://zoom.ummagumma.nl/mikedeboer/index.php?option=com_zoom&Itemid=39&catid=2+OR+1=1   
        the above url can show all images in all categories of images of the    zOOM    gallery database but other 
commands are also possible that can  result in a     database owning.
 

Andreas Constantinides
www.megahz.org 
www.odysseyconsultants.com

  By Date           By Thread  

Current thread:
  • zOOM Media Gallery - Simple SQL Injection discovery Andreas Constantinides (Apr 11)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]