CVE-2010-1314
Joomla! component Highslide JS com_hsconfig (versions 1.5 and 2.0.9) contains a Local File Inclusion via the controller parameter to index.php, enabling a directory traversal (..). This allows reading arbitrary server files. The NUCLEI template confirms the vulnerability and notes remediation as ...