6.7 Medium
AI Score
Confidence
Low
0.021 Low
EPSS
Percentile
89.2%
Directory traversal vulnerability in the PicSell (com_picsell) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a … (dot dot) in the dflink parameter in a prevsell dwnfree action to index.php.
secunia.com/advisories/41187
www.exploit-db.com/exploits/14845