CVE-2010-1956
Affected software: Joomla! Gadget Factory component (com_gadgetfactory) versions 1.0.0 and 1.5.0. Vulnerability: Local File Inclusion via directory traversal, allowing a remote attacker to read arbitrary files by supplying a .. (dot dot) in the controller parameter to index.php. Root cause: Insuf...