7.6 High
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
78.5%
Directory traversal vulnerability in the Helpdesk Pro plugin before 1.4.0 for Joomla! allows remote attackers to read arbitrary files via a … (dot dot) in the filename parameter in a ticket.download_attachment task.
packetstormsecurity.com/files/132766/Joomla-Helpdesk-Pro-XSS-File-Disclosure-SQL-Injection.html
seclists.org/fulldisclosure/2015/Jul/102
www.securityfocus.com/bid/75971
www.exploit-db.com/exploits/37666/