Scriptegrator Local File Inclusion Vulnerability ? - Great Joomla!

Latest version

Make sure you have the latest stable version of each installed extension.

Commercial templates (Yootheme, RocketTheme, Artisteer etc.)
Please note that support for commercial templates is also commercial - for Membership Personal and Membership Full users.
We believe it is the necessary step to make our service even better.

Custom modification
In case you modify our extensions, you assume responsibility for the correct functionality and you haven't got right of support.

Live demo
Please supply a link to a live web page where I can see your entire environment.

Modern browsers
Please use a latest version of your browser.

Forum rules

Welcome, Guest
Please Login or Register. Lost Password?

Great Joomla!

Archive

Joomla 1.5 - not supported

Plugins

CD Scriptegrator plugin

Scriptegrator Local File Inclusion Vulnerability ? Forum is locked

(1 viewing) (1) Guest

Page: 1

TOPIC: Scriptegrator Local File Inclusion Vulnerability ?

Forum Tools

#4374

Scriptegrator Local File Inclusion Vulnerability ? 3 Years, 3 Months ago
Do you have a hotfix for it? www.exploit-db.com/exploits/11498

Lintquy

Posts: 2

The topic has been locked.

#4377

Re:Scriptegrator Local File Inclusion Vulnerability ? 3 Years, 3 Months ago
Hi, the newest version (in development) has a new loader.js file with more secure code. Anyway if there is a good settings on "open_basedir" server settings (which is a based skill of each server provider), the vulnerability is zero. For example our own demo server: demo.greatjoomla.com/plugins/system/cdsc...?files[]=/etc/passwd Nothing displaying. However thanks for your notice. Bye.