Lucene search

[email protected]CVE-2010-2682

HistoryJul 12, 2010 - 1:27 p.m.

CVE-2010-2682

2010-07-1213:27:28

CWE-22

[email protected]

web.nvd.nist.gov

cve

2010

2682

directory traversal

vulnerability

realtyna translator

joomla

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.1%

JSON

Directory traversal vulnerability in the Realtyna Translator (com_realtyna) component 1.0.15 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a … (dot dot) in the controller parameter to index.php.

Affected configurations

NVD

Node

realtynacom_realtynaMatch1.0.15

AND

joomlajoomla\!

CPENameOperatorVersion
realtyna:com_realtynarealtyna com realtynaeq1.0.15

CPE	Name	Operator	Version
realtyna:com_realtyna	realtyna com realtyna	eq	1.0.15

References

packetstormsecurity.org/1004-exploits/joomlarealtyna-lfi.txt

www.exploit-db.com/exploits/14017

www.securityfocus.com/bid/39337

exchange.xforce.ibmcloud.com/vulnerabilities/57647

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.1%

JSON

Related for CVE-2010-2682

nuclei1 prion1 cvelist1 nvd1 dsquare1