Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-4504 PoC — Joomla! RSfiles 组件'index.php'目录遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2007/CVE-2007-4504.yaml
Associated Vulnerability
Title:Joomla! RSfiles 组件'index.php'目录遍历漏洞 (CVE-2007-4504)
Description:Joomla! RSfiles 组件 (com_rsfiles) 1.0.2版本及其早期版本的index.php中存在目录遍历漏洞。远程攻击者可以借助一个files.display操作中的路径参数中的一个..,读取任意文件。
Description
Joomla! RSfiles 1.0.2 and earlier is susceptible to local file inclusion in index.php in the RSfiles component (com_rsfiles). This could allow remote attackers to arbitrarily read files via a .. (dot dot) in the path parameter in a files.display action.
File Snapshot

 id: CVE-2007-4504

info:
  name: Joomla! RSfiles <=1.0.2 - Local File Inclusion
  author: daffainfo


...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.