Hi, crackers_child@xxxxxxxxxxxxxxxxxxx schrieb am Thu, 17 Aug 2006 20:38:57 +0000: >-------------------------------------------- > > >Application : contentpublisher/ Component of Mambo > > >------------------------------------- >------------------------------------------- > > >Bug İn contentpublisher.php > >------------------------------------------- > > >Exploit: > > >http://[target]/[mambo_path]/components/contentpublisher/ >contentpublisher.php?mosConfig_absolute_path=Shell.txt? > This script can not be called directly, look at the top of it: defined( '_VALID_MOS' ) or die( 'Direct Access to this location is not allowed.' ); So there is no vulnerability. Regards Carsten -- Dipl.-Inform. Carsten Eilers IT-Sicherheit und Datenschutz <http://www.ceilers-it.de>
