EUVD-2010-3424

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Directory traversal vulnerability in JPhone component allows file inclusion via controller parameter.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2010-3426	10 Sep 201000:00	–	circl
CVE	CVE-2010-3426	16 Sep 201021:00	–	cve
Cvelist	CVE-2010-3426	16 Sep 201021:00	–	cvelist
Dsquare	Joomla Component com_jphone 1.0 alpha 3 LFI	1 Feb 201200:00	–	dsquare
Tenable Nessus	Joomla! / Mambo Component Multiple Parameter Local File Include Vulnerabilities	4 Jan 201000:00	–	nessus
Nuclei	Joomla! Component Jphone 1.0 Alpha 3 - Local File Inclusion	3 Jun 202606:04	–	nuclei
NVD	CVE-2010-3426	16 Sep 201022:00	–	nvd
Prion	Directory traversal	16 Sep 201022:00	–	prion
seebug.org	Joomla Component (com_jphone) Local File Inclusion Vulnerability	1 Jul 201400:00	–	seebug

[
  {
    "enisaIdVendor": [
      {
        "id": "f67c7ea1-6f94-36ae-91bb-d059c97c67a9",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "23df7138-9dee-3bae-87a6-271f1d23c0c0",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
exploit-db	www.exploit-db.com/exploits/14964
securityfocus	www.securityfocus.com/bid/43147
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/61723
packetstormsecurity	www.packetstormsecurity.org/1009-exploits/joomlajphone-lfi.txt
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 27.5

EPSS0.01112