cve/CVE-2010-1305.md at eb8fb22b51df9332dc1ec68d0bcaedfdbefed8cd

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-16 20:27:21 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Directory traversal vulnerability in jinventory.php in the JInventory (com_jinventory) component 1.23.02 and possibly other versions before 1.26.03, a module for Joomla!, allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.

POC

Reference

http://packetstormsecurity.org/1004-exploits/jinventory-lfi.txt

Github

https://github.com/ARPSyndicate/kenzer-templates

779 B Raw Blame History

CVE-2010-1305

Description

POC

Reference

Github

779 B

Raw Blame History