Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtCold Zero1337DAY-ID-2121
HistorySep 08, 2007 - 12:00 a.m.

Joomla Component Restaurante Remote File Upload Vulnerability

2007-09-0800:00:00
Cold Zero
0day.today
96
JSON

Exploit for unknown platform in category web applications

=============================================================
Joomla Component Restaurante Remote File Upload Vulnerability
=============================================================


Joomla Component Restaurante <= Remote File Upload Vulnerability

found by  : Cold z3ro

================================================================

@################################################################@
# joomla/index.php?option=com_restaurante&task=upload
#
# /joomla/components/com_restaurante/img_original/.shell.php.jpg
#
# Dork : /index.php?option=com_restaurante
@################################################################@


Attacker can upload any file using this link

joomla/index.php?option=com_restaurante&task=upload

after upload the file , He can find it in :

/components/com_restaurante/img_original

But the attacker should add ( Point ) befor filename

Example :

if attacker uploaded file named shell.php.jpg

its name will by like this .shell.php.jpg

in path :

/components/com_restaurante/img_original/.shell.php.jpg




#  0day.today [2018-03-03]  #
JSON