Tamlyncreative Com Bfsurvey Basic vulnerabilities
2 known vulnerabilities affecting tamlyncreative/com_bfsurvey_basic.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2010-2259P3HIGHCVSS 7.5PoC≤ 1.12010-06-09
CVE-2010-2259 [HIGH] CWE-22 CVE-2010-2259: Directory traversal vulnerability in the BF Survey (com_bfsurvey) component for Joomla! allows remot
Directory traversal vulnerability in the BF Survey (com_bfsurvey) component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
nvd
CVE-2010-2255P3HIGHCVSS 7.5PoC≤ 1.12010-06-09
CVE-2010-2255 [HIGH] CWE-89 CVE-2010-2255: SQL injection vulnerability in the BF Survey Pro (com_bfsurvey_pro) component before 1.3.1, BF Surve
SQL injection vulnerability in the BF Survey Pro (com_bfsurvey_pro) component before 1.3.1, BF Survey Pro Free (com_bfsurvey_profree) component 1.2.6, and BF Survey Basic component before 1.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php. NOTE: some of these details are obtained from third part
nvd