Описание
Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter to the avatars page, reachable through index.php.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:joomla:joomla:*:*:*:*:*:*:*:*
cpe:2.3:a:jvitals:com_agora:3.0.0b:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01573
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter to the avatars page, reachable through index.php.
EPSS
Процентиль: 81%
0.01573
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22