Lucene search

VelteamJVEL:481

HistoryAug 04, 2017 - 12:00 a.m.

Extplorer, 2.1.9 and previous, Directory Traversal

2017-08-0400:00:00

velteam

vel.joomla.org

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.017

Percentile

87.7%

JSON

Extplorer, 2.1.9, Directory Traversal

cve: CVE-2016-4313

resolution: update to 2.1.10

update notice: http://extplorer.net/news/21

Affected configurations

Vulners

Node

joomlaextplorerMatch2.1.9

joomlaextplorerRange<2.1.10

VendorProductVersionCPE
joomlaextplorer2.1.9cpe:2.3:a:joomla:extplorer:2.1.9:*:*:*:*:*:*:*
joomlaextplorer*cpe:2.3:a:joomla:extplorer:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
joomla	extplorer	2.1.9	cpe:2.3:a:joomla:extplorer:2.1.9:::::::*
joomla	extplorer	*	cpe:2.3:a:joomla:extplorer::::::::

References

extplorer.net/

extplorer.net/news/21

extensions.joomla.org/extension/extplorer/

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.017

Percentile

87.7%

JSON

Related for JVEL:481