CVE-2010-0942
published 2010-03-08CVE-2010-0942: Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot…
PriorityP337medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
7.24%
93.6th percentile
Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
jVideoDirect Com Jvideodirect index.php controller path traversal (EDB-11089 / XFDB-55513)
vuldb·2026-05-02·CVSS 5.0
CVE-2010-0942 [MEDIUM] jVideoDirect Com Jvideodirect index.php controller path traversal (EDB-11089 / XFDB-55513)
A vulnerability was found in jVideoDirect Com Jvideodirect. It has been rated as problematic. Impacted is an unknown function of the file index.php. Performing a manipulation of the argument controller results in path traversal.
This vulnerability is identified as CVE-2010-0942. The attack can be initiated remotely. Additionally, an exploit exists.
GHSA
GHSA-9mqg-r76j-pmpx: Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a
ghsa_unreviewed·2022-05-02
CVE-2010-0942 [MEDIUM] CWE-22 GHSA-9mqg-r76j-pmpx: Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a
Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
No detection rules found.
Exploit-DB
Joomla! Component com_jvideodirect - Directory Traversal
exploitdb·2010-01-10
CVE-2010-0942 Joomla! Component com_jvideodirect - Directory Traversal
Joomla! Component com_jvideodirect - Directory Traversal
---
@~~=======================================~~@
@~~=Script : Joomla Component com_jvideodirect
@~~=Author : FL0RiX
@~~=Greez : Deep-Power ,Pyske,Wretch-x & All Friends
@~~=Bug Type : Directory Traversal
@~~=Dork : inurl:"com_jvideodirect "
@~~=Note : Kimseye Hakettiginden Fazla Deger Vermeyecekmissin..!!
@~~=======================================~~@
@~~=Vuln.
: http://site/ [Yol] /index.php?option=com_jvideodirect&controller=../../../../../../../../../../etc/passwd%00
Nuclei
Joomla! Component com_jvideodirect - Directory Traversal
nuclei·CVSS 5.0
CVE-2010-0942 [MEDIUM] Joomla! Component com_jvideodirect - Directory Traversal
Joomla! Component com_jvideodirect - Directory Traversal
Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
Template:
id: CVE-2010-0942
info:
name: Joomla! Component com_jvideodirect - Directory Traversal
author: daffainfo
severity: medium
description: Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
impact: |
An attacker can exploit this vulnerability to read arbitrary files on the server.
remediation: Apply all relevant security patches and product upgrades.
reference:
- https://ww
http://packetstormsecurity.org/1001-exploits/joomlajvideodirect-traversal.txthttp://www.exploit-db.com/exploits/11089http://www.securityfocus.com/bid/37694https://exchange.xforce.ibmcloud.com/vulnerabilities/55513http://packetstormsecurity.org/1001-exploits/joomlajvideodirect-traversal.txthttp://www.exploit-db.com/exploits/11089http://www.securityfocus.com/bid/37694https://exchange.xforce.ibmcloud.com/vulnerabilities/55513
2010-03-08
Published