Lucene search
HistoryFeb 23, 2010 - 6:30 p.m.
CVE-2010-0696
cve-2010-0696
directory traversal
joomlaworks allvideos
vulnerability
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.8 Medium
AI Score
Confidence
Low
0.573 Medium
EPSS
Percentile
97.7%
Directory traversal vulnerability in includes/download.php in the JoomlaWorks AllVideos (Jw_allVideos) plugin 3.0 through 3.2 for Joomla! allows remote attackers to read arbitrary files via a ./…/…/ (modified dot dot) in the file parameter.
Affected configurations
Node
joomlaworksjw_allvideosMatch3.0
ORjoomlaworksjw_allvideosMatch3.1
ORjoomlaworksjw_allvideosMatch3.2
joomlajoomla
Related
nessus
nessus
Joomla! JoomlaWorks AllVideos Plugin 'file' Parameter Directory Traversal
2010-02-23 00:00:00
cvelist
cvelist
CVE-2010-0696
2010-02-23 18:00:00
nuclei
nuclei
Joomla! Component Jw_allVideos - Arbitrary File Retrieval
2021-09-27 11:02:48
prion
prion
Directory traversal
2010-02-23 18:30:00
checkpoint_advisories
checkpoint_advisories
Joomla Component Jw_allVideos Remote File Download (CVE-2010-0696)
2014-11-10 00:00:00
nvd
nvd
CVE-2010-0696
2010-02-23 18:30:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.8 Medium
AI Score
Confidence
Low
0.573 Medium
EPSS
Percentile
97.7%
Related for CVE-2010-0696