Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter to the avatars page, reachable through index.php.
References
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2009-09-03 10:30
Updated : 2017-09-18 18:29
NVD link : CVE-2009-3053
Mitre link : CVE-2009-3053
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
jvitals
- com_agora
joomla
- joomla