File tree Expand file tree Collapse file tree 1 file changed +7
-7
lines changed
modules/exploits/unix/webapp Expand file tree Collapse file tree 1 file changed +7
-7
lines changed Original file line number Diff line number Diff line change @@ -17,13 +17,13 @@ def initialize(info={})
1717 super ( update_info ( info ,
1818 'Name' => "Joomla Media Manager File Upload Vulnerability" ,
1919 'Description' => %q{
20- This module exploits a vulnerability found in Joomla 2.5.13 and earlier 2.5.x
21- versions, 3.1.4 and earlier 3.x versions. The vulnerability exists in the Media
22- Manager component , allowing arbitrary file uploads, which results in arbitrary code
23- execution. The module has been tested successfully on Joomla 2.5.13 and 3.1.4 on
24- Ubuntu 10.04. In order to work properly, if public access isn't allowed to the
25- Media Manager, credentials with access to the component are needed (Editor role
26- typically) .
20+ This module exploits a vulnerability found in Joomla 2.5.x up to 2.5.13, as well as
21+ 3.x up to 3.1.4 versions. The vulnerability exists in the Media Manager component,
22+ which comes by default in Joomla , allowing arbitrary file uploads, and results in
23+ arbitrary code execution. The module has been tested successfully on Joomla 2.5.13
24+ and 3.1.4 on Ubuntu 10.04. Note: If public access isn't allowed to the Media
25+ Manager, you will need to supply a valid username and password (Editor role or
26+ higher) in order to work properly .
2727 } ,
2828 'License' => MSF_LICENSE ,
2929 'Author' =>
You can’t perform that action at this time.
0 commit comments