EXPLOITDB-EDB-4508

EXPLOITDB text VERIFIED WORKING POC

Exploit for CVE-2007-5407 - Joomlaequipment Jcontentsubscription - Code Injection

AI Analysis

This exploit demonstrates a Remote File Include (RFI) vulnerability in the JContentSubscription Joomla Component 1.5.8. The vulnerability arises from insecure usage of the `mosConfig_absolute_path` parameter in multiple PHP files, allowing remote code execution via crafted HTTP requests.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform php

Language text

Files 1

https://www.exploit-db.com/exploits/4508

Authors

NoGe

Vulnerability

CVE-2007-5407

Joomlaequipment Jcontentsubscription - Code Injection