Researcher Kasper Bertelsen warns that it is quite vulnerable points που ανακάλυψε στο Helpdesk Pro του Joomla, μπορούν να οδηγήσουν σε απομακρυσμένη εκτέλεση κώδικα στους διακομιστές που φιλοξενούν την Web εφαρμογή.
Helpdesk Pro is a Joomla extension that allows administrators and users to use tickets supports.
Here are some websites that use this plugin: eBay, Heathrow Airport, and the Australian Supreme Court.
Vulnerabilities were discovered by Simon Rawet, Kristian Varnai, and Gregor Mynarsky, and include: direct object references, cross-site scripting, SQL injection, local file injection, arbitrary file upload.
"[Vulnerabilities] leave systems vulnerable to a wide variety of attack types, resulting in the disclosure of potentially sensitive information, but also to the complete acquisition of the server with arbitrary code execution," they say.
Vulnerabilities work because the λήψη attachment and upload services do not restrict one from downloading files.
So an attacker can download the file configuration.php, for example, which contains sensitive information such as usernames, database passwords, and FTP credentials.
