2 matches found
CVE-2010-5280
Directory traversal vulnerability in the Community Builder Enhanced CBE comcbe component 1.4.8, 1.4.9, and 1.4.10 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. dot dot in the tabname parameter in a userProfile action to index.php. NOTE: this can be...
CVE-2010-5280
The CVE-2010-5280 entry describes a directory traversal (Local File Inclusion) in Joomla!’s Community Builder Enhanced (CBE) component (com_cbe) versions 1.4.8–1.4.10. The vulnerability allows remote attackers to include and execute arbitrary local files by supplying .. in the tabname parameter o...