Directory traversal vulnerability in the BF Survey (com_bfsurvey) component for Joomla! allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the controller parameter to index.php.
CPE | Name | Operator | Version |
---|---|---|---|
com_bfsurvey_basic | le | 1.1 | |
com_bfsurvey_pro | le | 1.3.0 | |
com_bfsurvey_profree | eq | 1.2.6 |