CVE-2010-2681
Joomla com_sef - Remote Code Execution via mosConfig.absolute.path Parameter
Title source: manualExploitation Summary
EIP tracks 1 public exploit for CVE-2010-2681. PoCs published by Li0n-PaL.
AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in the Joomla component com_sef. It allows an attacker to include and execute arbitrary remote files by manipulating the mosConfig.absolute.path parameter.
Description
PHP remote file inclusion vulnerability in the SEF404x (com_sef) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig.absolute.path parameter to index.php.
Exploits (1)
This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in the Joomla component com_sef. It allows an attacker to include and execute arbitrary remote files by manipulating the mosConfig.absolute.path parameter.