3 matches found
CVE-2010-0972
Directory traversal vulnerability in the GCalendar comgcalendar component 2.1.5 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. dot dot in the controller parameter to index.php...
CVE-2010-0972
Directory traversal vulnerability in the GCalendar comgcalendar component 2.1.5 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. dot dot in the controller parameter to index.php...
CVE-2010-0972
Affected product/component: Joomla! component com_gcalendar Suite 2.1.5. Vulnerability: Directory traversal / Local File Inclusion (LFI) in the GCalendar module. Root cause: Improper handling of the controller parameter in index.php allows including and executing arbitrary local files via a ../ s...