Joomla Component Property Local File Inclusion

vendor:

Property

by:

Chip D3 Bi0s

N/A

CVSS

N/A

Local File Inclusion

CWE

Product Name: Property

Affected Version From: Joomla 1.5

Affected Version To: Joomla 1.5

Patch Exists: NO

Related CWE: N/A

CPE: a:este8an:property

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2010

Joomla Component Property Local File Inclusion

Property is a new Real Estate component 100% FREE native Joomla 1.5. compatible with sh404sef and joomfish. An attacker can exploit this vulnerability by sending a crafted HTTP request containing malicious input to the vulnerable application. This can allow the attacker to include a file from the local system which can lead to the disclosure of sensitive information.

Mitigation:

Developers should ensure that user-supplied input is properly sanitized and validated before being used in the application. Additionally, developers should ensure that the application is not vulnerable to directory traversal attacks.

Source

Exploit-DB raw data:

---------------------------------------------------------------------------------
Joomla Component Property Local File Inclusion
---------------------------------------------------------------------------------

Author          : Chip D3 Bi0s
Group           : LatinHackTeam
Email & msn     : chipdebios[alt+64]gmail.com
Date            : 22 March 2010
Critical Lvl    : Moderate
Impact	        : Exposure of sensitive information
Where	        : From Remote
---------------------------------------------------------------------------

Affected software description:
~~~~~~~~~~~~~~~~~~~~~~~~~~~


Application     : Property
Developer       : este8an
License         : GPL            type  : Non Commercial
Date Added	: 22 January 2009
Download	: http://www.com-property.com/download.html?func=select&id=2

Description     :

Property is a new Real Estate component 100% FREE native Joomla 1.5.
compatible with sh404sef and joomfish.

Add Profiles (Agent data: Client is a user joomla registered)
Can change permissions in User Manager to 'Agent' , then this
user can publish various properties.

Control Panel
button Create Menus automatically creates menus in FrontEnd :
All Properties,
My Short List(Favorites),
My Panel(to publish properties),
My Profile.

You can change names after created.
---------------------------------------------------------------------------
how to exploit

http://localhost/index.php?option=com_properties&controller=[LFI]%00


+++++++++++++++++++++++++++++++++++++++
[!] Produced in South America
+++++++++++++++++++++++++++++++++++++++