Lucene search

K
cve[email protected]CVE-2010-1476
HistoryApr 19, 2010 - 7:30 p.m.

CVE-2010-1476

2010-04-1919:30:00
CWE-22
web.nvd.nist.gov
33
cve
2010
1476
directory traversal
alphauserpoints
joomla
remote attack

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

Directory traversal vulnerability in the AlphaUserPoints (com_alphauserpoints) component 1.5.5 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a … (dot dot) in the view parameter to index.php.

Affected configurations

NVD
Node
alphaplugcom_alphauserpointsMatch1.5.5
AND
joomlajoomla\!

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

Related for CVE-2010-1476