Описание
Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and possibly include and execute, arbitrary files via directory traversal sequences in the files[] parameter, a different vector than CVE-2010-0760.
Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and possibly include and execute, arbitrary files via directory traversal sequences in the files[] parameter, a different vector than CVE-2010-0760.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-0759
- https://exchange.xforce.ibmcloud.com/vulnerabilities/56380
- http://packetstormsecurity.org/1002-exploits/joomlascriptegrator-lfi.txt
- http://secunia.com/advisories/38637
- http://www.exploit-db.com/exploits/11498
- http://www.osvdb.org/62486
- http://www.securityfocus.com/bid/38296
Связанные уязвимости
Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and possibly include and execute, arbitrary files via directory traversal sequences in the files[] parameter, a different vector than CVE-2010-0760.