Monday, 30 April 2012

[EN] Joomla 2.5.4 "SQL Info leak"


so maybe You have 'display_errors=On' (or sth... still) on Your site...

So try this at Your localhost:

It's important to mention that if You ('attacker') get this error,
You (he is) are able to view 'randomed' Joomla-prefixes for some names.
Look at screen in JOIN query.

Cheers! o/

No comments:

Post a comment

What do You think...?