CVE-2010-2035
published 2010-05-25CVE-2010-2035: Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and…
PriorityP270high7.5CVSS 2.0
AVNACLAuNCPIPAP
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
15.78%
96.5th percentile
Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| percha | com_perchagallery | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Look for GET requests to index.php with option=com_perchagallery and a controller parameter containing directory traversal sequences (../) and a null byte (%00) ↗
- →Match HTTP 200 response containing passwd file content pattern 'root:.*:0:0:' to confirm successful exploitation ↗
- →Multiple Percha Joomla components are affected by the same LFI pattern: com_perchaimageattach, com_perchafieldsattach, com_perchadownloadsattach, com_perchagallery, com_perchacategoriestree ↗
- ·The null byte (%00) is required to truncate the file extension appended by the PHP include — this technique only works on PHP versions vulnerable to null byte injection (typically PHP < 5.3.4) ↗
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vulncheck7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2p45-2j99-9x4w: Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1
ghsa_unreviewed·2022-05-17
CVE-2010-2035 [HIGH] CWE-22 GHSA-2p45-2j99-9x4w: Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1
Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
VulnCheck
percha com_perchagallery Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
vulncheck·2010·CVSS 7.5
CVE-2010-2035 [HIGH] percha com_perchagallery Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
percha com_perchagallery Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Affected: percha com_perchagallery
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.labs.greynoise.io/grimoire/2025-12-26-coldfusion/
No detection rules found.
Exploit-DB
Joomla! Component Percha Gallery 1.6 Beta - 'Controller' Traversal Arbitrary File Access
exploitdb·2010-05-19
CVE-2010-2035 Joomla! Component Percha Gallery 1.6 Beta - 'Controller' Traversal Arbitrary File Access
Joomla! Component Percha Gallery 1.6 Beta - 'Controller' Traversal Arbitrary File Access
---
source: https://www.securityfocus.com/bid/40244/info
Multiple Percha components for Joomla are prone to multiple local file-include vulnerabilities because they fail to properly sanitize user-supplied input.
An attacker can exploit these vulnerabilities to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow the attacker to compromise the application and the computer; other attacks are also possible.
The following Percha components are affected:
com_perchaimageattach
com_perchafieldsattach
com_perchadownloadsattach
com_perchagallery
com_perchacategoriestree
http://www.example.com/index.php?option=com_perchagaller
Nuclei
Joomla! Component Percha Gallery 1.6 Beta - Directory Traversal
nuclei·CVSS 7.5
CVE-2010-2035 [HIGH] Joomla! Component Percha Gallery 1.6 Beta - Directory Traversal
Joomla! Component Percha Gallery 1.6 Beta - Directory Traversal
A directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. (dot dot) in the controller parameter to index.php.
Template:
id: CVE-2010-2035
info:
name: Joomla! Component Percha Gallery 1.6 Beta - Directory Traversal
author: daffainfo
severity: high
description: A directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. (dot dot) in the controller parameter to index.php.
impact: |
An attacker can access sensitive files on the se
2010-05-25
Published
Exploited in the wild