migo
Aug 4 2004, 11:17 AM
hello
i'm testing an old bug in mambo server 4.0.14 , the original sploit was in bugtraq
http://securityfocus.com/bid/9196/exploit/but when i test this exploit iwith the following query :
http://localhost/mambo/index.php?option=ar...0mos_users%20/*i got the following error
Query failed with error: The used SELECT statements have a different number of columns
any hint how could i correct the query ?
Best Regards
migo
mortello
Aug 4 2004, 03:52 PM
After looking at the exploit on securityfocus....I'm not sure you use the right code (not that I'm a guru in SQL injection, I in fact am pretty pretty bad hehe....)
anyway, if the SELECT doesn't work, maybe its because it was patched and that the patch blocks that keyword.... shooting in the blind here hehe
migo
Aug 4 2004, 04:21 PM
it's not patched
and i think sql injection is exist, i posted in waraxe forum and hopefully if i find an answer i'll post it here for sure
mortello
Aug 4 2004, 05:21 PM
| QUOTE (migo @ Aug 4 2004, 04:21 PM) |
it's not patched
and i think sql injection is exist, i posted in waraxe forum and hopefully if i find an answer i'll post it here for sure |
well, good luck in that case hehe
whiskah
Aug 4 2004, 11:47 PM
basing on the error u got...try seeing the code of mambo to correct the number of columns that shld be returned like
UNION SELECT 1,1,username,password from mos_users /*
it depends on how many columns that shld be returned then u have to add more 1's somewhere on your query..
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
