HIGH🇵🇱 Wersja polska

CVE-2010-1470

CVSS 7.5v2.0pub. 2010-04-19upd. 2026-04-29

Directory traversal vulnerability in the Web TV (com_webtv) component 1.0 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.

CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
  • Dev.pucit.edu.pk Com Webtv

    APP
    Dev.Pucit.Edu.Pk
    1.0
  • Joomla

    APP
    Joomla
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2009-4789HIGH7.5ten sam produkt

Multiple PHP remote file inclusion vulnerabilities in the MojoBlog component RC 0.15 for Joomla! allow remote ...

CVE-2010-0694HIGH7.5ten sam produkt

SQL injection vulnerability in the PerchaGallery (com_perchagallery) component before 1.5b for Joomla! allows ...

CVE-2009-4599HIGH7.5ten sam produkt

Multiple SQL injection vulnerabilities in the JS Jobs (com_jsjobs) component 1.0.5.6 for Joomla! allow remote ...

CVE-2009-4604HIGH7.5ten sam produkt

PHP remote file inclusion vulnerability in mamboleto.php in the Fernando Soares Mamboleto (com_mamboleto) comp...

CVE-2009-4598HIGH7.5ten sam produkt

SQL injection vulnerability in the JPhoto (com_jphoto) component 1.0 for Joomla! allows remote attackers to ex...