Sensitive Data: Joomla! Component Easy Shop 1.2.3 - Local File Inclusion¶

Identifier: joomla_easyshop_lfi

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

Joomla! component Easy Shop version 1.2.3 is vulnerable to local file inclusion attacks, allowing attackers to read sensitive files from the server.

How we test: We test for local file inclusion vulnerabilities in Joomla Easy Shop by injecting file path payloads and analyzing responses to detect if local files can be included and their contents exposed.

Reference:

https://blog.csdn.net/weixin_42628854/article/details/136036109

Configuration¶

Example¶

Example configuration:

---
security_tests:
  joomla_easyshop_lfi:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.