lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <CA+au=tdUgv5pr4BLgADXBjHQEWJMXxXGhx2XbT4Y4LA7gSV6yg@mail.gmail.com>
Date: Thu, 26 Sep 2013 13:23:41 -0500
From: Sergio Tam <tam.sergio@...il.com>
To: bugtraq@...urityfocus.com
Subject: Re:joomla com_zimbcomment Components Local File Include vulnerability

2013/9/25 <iedb.team@...il.com>:
> The joomla com_zimbcomment Components suffers from a Local File Include Vulnerability.
>
> #################################
>
> # Iranian Exploit DataBase Forum
>
> # http://iedb.ir/acc
>
> # http://iedb.ir
>
> #################################
>
> # Exploit Title : joomla com_zimbcomment Components Local File Include vulnerability
>
> # Author : Iranian Exploit DataBase
>
> # Discovered By : IeDb
>
> # Email : IeDb.Team@...il.com
>
> # Id : o0_iedb_0o
>
> # Home : http://iedb.ir - http://iedb.ir/acc
>
> # Software Link : http://www.joomla.om/
>
> # Security Risk : High
>
> # Tested on : Linux
>
> # Dork : inurl:index.php?option=com_zimbcomment
>
> #################################
>
> # Expl0iTs :
>
> # http://www.Site.com/index.php?option=com_zimbcomment&controller=[LFI]
>
> # Dem0 :
>
> # http://cullarvega.freehostia.com/index.php?option=com_zimbcomment&controller=[LFI]
>
> #################################
>
> # Tnx To : TaK.FaNaR - l4tr0d3ctism - r3d_s0urc3 - Bl4ck M4n - F??A±??ï?½iD - Medrik - Dj.TiniVini
>
> # B3hz4d - C0dex - Behnam Vanda - ErfanMs - E2MA3N - S!Y0U.T4r.6T - 0x0ptim0us - ARTA - dr.koderz
>
> # & All Member In Iedb.ir/acc & Iranian Hackers
>
> #################################
>
> # Exploit Archive = http://www.iedb.ir/exploits-611.html
>
> #################################




http://www.exploit-db.com/exploits/12283/

 [o] Joomla Component ZiMB Comment Local File Inclusion Vulnerability
Software : com_zimbcomment version 0.8.1
Vendor : http://www.zimbllc.com/
Author : AntiSecurity [ NoGe Vrs-hCk OoN_BoY Paman zxvf s4va ]
Contact : public[at]antisecurity[dot]org
Home : http://antisecurity.org/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ